ietf-mxcomp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Wildcards not useable

2004-08-10 22:27:52
from [Mark Lentczner] [Permanent Link] 


On Aug 10, 2004, at 3:32 PM, Douglas Otis wrote:

The Not Authorized aspect of CSV-CSA was intended only to offer added
protection, should a system be considered vulnerable to being
compromised. Such as a system may provide web or shell services, but is 
not intended to be sending mail.  A specific removal of this host from
being authorized adds additional protections from Trojans.
Actually, the Not Authorized CSV record doesn't help against Trojans: Those mailers are never going to use the infected host's domain name in HELO/EHLO.
What would help is simply blocking outgoing port 25 access for those hosts. In fact this is much more effective: The receiving MTA doesn't have to support CSV for it to work! If I were a sys. admin., that's what I'd do. 

        - Mark

Mark Lentczner
http://www.ozonehouse.com/mark/
markl(_at_)glyphic(_dot_)com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: change of version string, Jim Fenton
Next by Date:  RE: Does marid-submitter-02 really make sense?, Mark Shewmaker
Previous by Thread:  Wildcards not useable, Douglas Otis
Next by Thread:  Analysis of SPF benefits for reduced filtering, Dean Anderson
Indexes:  [Date] [Thread] [Top] [All Lists]