On Sun, Apr 11, 2004 at 01:22:10PM -0400, Meng Weng Wong wrote:
Looks like blueyonder is an ISP. They need to be a bit more restrictive
with their record, listing only the approved outbound mail servers,
rather than the entire network including DSL nodes.
Blueyonder is one of the two or three cable ISPs in the UK. Every
subscriber gets a blueyonder email address, but it's fine for them
to send directly.
I don't see a problem with that, so long as they're sharp when you
report the spam to them. This is where we get to practice what will
eventually become commonplace; there will be spams from SPF-enabled
domains, lots of them.
We know who to complain to in this case; blueyonder.co.uk. They know
who sent the spam. Probably a zombie. Anyway, report it to them and
see what happens. If they get this happening too often, they'll have
to take some kind of action to stop it, or eventually they'll get
blacklisted.
SPF is working; it's enabling us to pin the blame on the sender.
With luck, it will also mean that their abuse department receives
less joe-jobbed reports, and is better able to do something about
ones like this.
Cheers,
Nick