[Top] [All Lists]

Re: "Header Reordering", yet again

2005-05-27 14:44:06
On Fri, 27 May 2005 21:22:06 BST, Paul Smith said:

If you're worried about overflows (eg the spammer adding an index of 65535  
hoping the next one will wrap around to 0) then you could say that index  
values can't go over 100, if they do messages must be rejected (as most  
messages with large numbers of Received: headers are, for loop detection  
(at much smaller counts than 100). Then, what will the spammer fake? They  
can't fake anything that will actually do any good!

It *does* however present an interesting new way to DDoS somebody - have a bunch
of zombies send joe-jobbed mail addressed from the victim, to sites that haven't
learned about the dangers of accept-then-bounce. ;)

Attachment: pgproDssug46y.pgp
Description: PGP signature