Re: RCPT TO: rejecting

On Wed, 26 May 2004, Theo Schlossnagle wrote:

If I sent two email to each from:

MAIL FROM:<user(_at_)victimdomain1(_dot_)com>
and
MAIL FROM:<user(_at_)victimdomain2(_dot_)com>

it would cause 50,000 CBV checks against each domain all coming from
different mail servers.  That qualifies as a DDoS.


Sure.  And if you did the same with 50,000 sites that check SPF, you'd
cause 50,000 DNS requests against each domain, all coming from different
mail servers.  Does that mean SPF should be rejected as an evil tool that
can be used in DDoS attacks?

<Prev in Thread]	Current Thread	[Next in Thread>
Re: RCPT TO: rejecting, (continued) Re: RCPT TO: rejecting, Mark RE: RCPT TO: rejecting, Seth Goodman Re: RCPT TO: rejecting, Lou Katz RE: RCPT TO: rejecting, Seth Goodman Re[2]: RCPT TO: rejecting, Chris Drake Re: RCPT TO: rejecting, David Brodbeck Re: RCPT TO: rejecting, George Mitchell Re: RCPT TO: rejecting, David Brodbeck Re: RCPT TO: rejecting, George Mitchell Re: RCPT TO: rejecting, Theo Schlossnagle Re: RCPT TO: rejecting, David Brodbeck <= Re: RCPT TO: rejecting, Alain Knaff Re: RCPT TO: rejecting, Theo Schlossnagle Re[2]: RCPT TO: rejecting, Chris Drake Re: Re[2]: RCPT TO: rejecting, Jesse Gordon Re: Re[2]: RCPT TO: rejecting, Mark Re: Re[2]: RCPT TO: rejecting, Alex van den Bogaerdt Re: Re[2]: RCPT TO: rejecting, Theo Schlossnagle the philosophy of CBV, Meng Weng Wong Re: the philosophy of CBV, Chris Drake Re: the philosophy of CBV, David Nicol

Previous by Date:	Re: RCPT TO: rejecting, Theo Schlossnagle
Next by Date:	Re: Logo aka branding aka identity issue, James Couzens
Previous by Thread:	Re: RCPT TO: rejecting, Theo Schlossnagle
Next by Thread:	Re: RCPT TO: rejecting, Alain Knaff
Indexes:	[Date] [Thread] [Top] [All Lists]