[Top] [All Lists]

Re: Strict RFC x821 Compliant: MAIL FROM:

2005-07-06 07:55:30
On Wed, 06 Jul 2005 12:42:33 +0300, Matti Aarnio said:

commonly, without brackets, etc.    Some machines are clearly behind
some NAT box:  "EHLO []"  (yup, it had correct brackets)

It's things like that which caused the RFC prohibition on bouncing mail
due to the EHLO value - that machine was being as strictly compliant as
it could.

On the other hand, I could *easily* make the case that you should reject on
site any 'MAIL FROM: <..' crud from certain vendors as a security measure. That
sort of blatant inability to code per spec indicates a site that should be
blacklisted because the next time you hear from them, it's likely to be Yet
Another Worm/Virus (if the one you're looking at isn't one itself).

OK.  Maybe I'm just tired of MyDoom :)

Attachment: pgpOBLOzMxWba.pgp
Description: PGP signature