[Top] [All Lists]

Re: [ietf-smtp] EHLO domain validation requirement in RFC 5321

2020-09-27 11:36:58

--On Sunday, September 27, 2020 11:40 -0400 John R Levine
<johnl(_at_)taugh(_dot_)com> wrote:

I would say instead that because some subset of inbound MTAs
do EHLO  verification, "real mail servers" (i.e. those which
manage to continue to  deliver mail with some reliability)
are forced to have static IPv4 source  addresses for which
PTR lookup results match EHLO arguments.

No, we've observed in practice that hosts that don't have
matching PTRs are spambots.
Anything that comes from a dynamic or NAT pool is invariably
spam from a  botnet.


(as with Keith earlier comment, this is not intended to be a
rant, but might come out sounding that way)

This is a self-fulfilling prophecy which gets back to Keith's
comment about resources.  In order to run an SMTP client or
server with any of the three ISPs I've dealt with recently, and
do so without violating the contracts they impose, I first have
to obtain a business account which is not much different from a
residential account other than costing three or four times as
much.  Because the anti-spam powers that be don't think I should
be running either an SMTP server or a client on dynamic
addresses (even if I have dynamic DNS set up properly and
appropriate MX arrangements), I have to then obtain one or more
static addresses from said ISP and the costs of those are not
going down [1].   And, since the idea of delegating
reverse-mapping ranges on bit boundaries failed, once one has
those static addresses, one than has to convince the ISP to
provide the correct reverse mapping.  That, too, has costs -
either in terms of money or in efforts to negotiate.  There may
be ISPs out there who, upon supplying a static address  or
address range inquire how one would like the reverse mapping
records to read, or even insist on getting that information, but
I haven't encountered one yet.

So, if the goal, however unintentionally, is to further reduce
the number of independent (and legitimate) SMTP clients and
servers, and force those without extensive resources to shift
over to large and dominant email providers, perhaps we are on

It would be nice if mail still worked the way it did 30 years
ago, but that was most definitely then, and this is now.

And, from the standpoint of those large providers, the fight
against spam and other sorts of evil behavior would be ever so
much easier if they had only a handful of other providers to
work with s.t. anything not coming from one of them was suspect.
Of course, the way DMARC was developed and deployed might be
believed to reflect exactly that attitude.


[1] I don't know that I believe it but I've heard it suggested
that some ISPs are doing less than they might to encourage IPv6
adoptions because they couldn't get away with charging nearly as
much for static addresses in that space.

ietf-smtp mailing list

<Prev in Thread] Current Thread [Next in Thread>