This my policy on my mailservers for more than 2 years.
It does not reject (egg 550), but just send a tempfail return (450)
when DNS send a temp fail (for exemple main DNS server of PTR is not
reachable), also, my servers checks that the hostname given on the PTR
exist also on zone file with same A.
Eg :
1.2.3.4 has PTR mail.foo.com, then mailserver will check that
mail.foo.com as 1.2.3.4 as IP.
This kind of rule elimate 80% of spam. Other servers are just half
configured systems, so colateral damages are not too mutch big.
/Xavier
Le 24 juin 04, à 19:53, systhine(_at_)tampabay(_dot_)rr(_dot_)com a écrit :
I was just browsing my SMTP log and found this:
"America Online (AOL) and it's affiliated companies do not authorize
the use of it's proprietary computers and networks to accept,
transmit, or distribute unsolicited bulk e-mail sent from the
internet. Effective immediately: AOL may no longer accept connections
from IP addresses which have no reverse-DNS (PTR record) assigned."
I found it interesting. Is this a policy of many MTAs?
Ryan O'Horo
IT Manager
Hydro Spa, Inc.
1-877-BEST-SPA ext. 263
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Send us money! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
--
Xavier Beaudouin - Unix System Administrator & Projects Leader.
President of Kazar Organization : http://www.kazar.net/
Please visit http://caudium.net/, home of Caudium & Camas projects