On Wed, Aug 26, 2009 at 6:21 PM, Rich Kulawiec<rsk(_at_)gsp(_dot_)org> wrote:
On Wed, Aug 26, 2009 at 06:06:01PM -0000, John Levine wrote:
Rich, does ipv6 change any of this?
I'm not Rich, but the open question at this point is how effective
DNSBLs will be on IPv6.
What John said.
Point blocks already have their issues, for example (a) hosts using
dynamic addressing can hop around within a network allocation and
(b) spammers can try to use snowshoe techniques to tread lightly
enough to evade them. And they can be unwieldly. I think all of
this is likely to get worse with IPv6. I rather suspect that this
will lead to mechanisms using entire network blocks -- some of which
we already have. (For example, we have MTAs that understand blacklists
in CIDR format.)
At least some of the other measures should continue working, though,
as they're independent of IPv4-IPv6. But I think while they may be
helpful, they're not going to be enough.
I don't see much help coming from SPF or DKIM or whatever: most of the
spam that makes it past my setup is correctly marked with one of these.
(<cough> Hotmail, Yahoo) I expect this will get much worse as spammers
begin to leverage the full power of the botnets they're operating.
So, if one were willing to accept that there will be valid IPv6 MTA
based connections, and the practicality of using IPv4 methods is no
longer feasible, then your list would be composed of only SMTP
envelope and body checks?
Asrg mailing list