ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Do the must 'bounce' rules need to be relaxed for virus infected messages?

2004-03-23 13:46:16
from [Dan Wing] [Permanent Link] 


I think the RFCs need to 'relax' the requirement for notice of 
non delivery so as to reflect the new 'current best practices' 
for handling virus infected messages and other messages with 
forged 'return path' information. 


No, let's not.


Then we have 2 alternatives, each even more ugly:

...

False positives are the difficulty.

The essense of the original proposal would be this wording:

  If a MAIL FROM address is known to be forged, a bounce MUST
  NOT be sent to that forged address.
  
I suppose we could leave "is known to be forged" as an exercise
for the reader.  Perhaps antivirus companies can make their
own determination based on viruses that propagate themselves
and fake the MAIL FROM address, and spam detectors might 
make their determination using SPF (or its relatives).

-d
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Do the must 'bounce' rules need to be relaxed for virus infected messages?, John C Klensin
Next by Date:  Re: Do the must 'bounce' rules need to be relaxed for virus infected messages?, Keith Moore
Previous by Thread:  Re: Do the must 'bounce' rules need to be relaxed for virus infected messages?, Valdis . Kletnieks
Next by Thread:  Re: Do the must 'bounce' rules need to be relaxed for virus infected messages?, Keith Moore
Indexes:  [Date] [Thread] [Top] [All Lists]