[ mail from non-mx machines ]
Any mail system which allows such nonsense is broken.
why. because you said so?
Because the behaviour of the network (machines originating mail)
does not match the intended behaviour. This isn't hard to see.
*whose* intended behavior? it certainly matches the sender's intended
behavior. and it's perfectly legal according to the standards, with
good reason.
Any solution I'm interested in doesn't involve filtering, data
collection, or counting how much email someone sends.
nobody says you have to use it. you can decide whether to accept mail based
on the phase of the moon if you want.
e.g. The recent postfix checks. No MX? Nowhere to send bounces?
According to the RFC I shouldn't accept the mail, because there's
nowhere to send a possible bounce.
you can accept it if you wish. you just can't bounce the mail.
e.g. Domains making positive declarations "Mail from my domain
originates only from IP X".
there's nothing horrible about that, but it's not generally useful.
people need to be able to send mail from arbitrary locations on the
net. nor is it a good idea to tie IP addresses to domains.
domains are just names. traffic doesn't originate from domains.
So when someone sends email FROM "bob(_at_)example(_dot_)com", his traffic
isn't originating from any domain.
you've got it.
When his IP resolves to
"ppp2723.isp.com", I shouldn't care that he's lying to me about who he
is, and where his email is coming from.
you don't know from the above information whether he is lying or not.
this mail is originating from some earthlink.net IP address; the return
address is moore(_at_)cs(_dot_)utk(_dot_)edu(_dot_) it's perfectly valid for
me to be using that
return address to send mail from that IP, or from any other IP that my laptop
happens to be connected to. I don't want to receive mail at my earthlink
email address, and if you sent mail there, chances are I would never see it.
traffic from throwaway account is < .01% of the spam you're seeing?
... from known "good business" ISP's, yes.
well, the rest of the net is getting the other 99.99% of such traffic,
because every time I look at spam most of the sender addresses are
fairly obvously throwaways.
Don't make me laugh. The sender addresses are forged.
many of the ones I see are perfectly valid. the sender gets the spam sent out
long before the account gets shut down.
I've had a *hell* of a time convincing people that I don't want to
see "helpful" notifications about mail with forged addresses from my
domain, seen in a spam message (sender, body, etc).
well I don't like it when spammers use my return address either (which they've
done once or twice). but IP address is simply not very useful as an
authentication token, and it's getting less useful for this over time.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg