-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
I got this bounced back message from AOL. Obviously, its a ratware
sending email as my domain's forged address. It seems that the first
"Recieved:" line is completely forged.
Co-incidentally, this header doesn't have the "Return-path:" header
at all.
Question: if AOL had SPF implemented (current SPF clients) at their
relay servers, would the SPF client be able to detect this or it
would simply quit 'cause there is no HELO or EHLO in the headers?
Although, according to section 2.2.1 of draft-mengwong-spf-01.txt
clearly says that SPF will just terminate with "unknown" error when
it can't find any FQDN in the HELO argument.
Question (again): so, is it wise to drop any email that does not have
HELO or EHLO argument? Or, there are valid cases of missing HELO or
EHLO in headers of legit emails?
Pardon me if this was discussed in the list before.
=== Header in question ===
- --JAC28061.1098451614/rly-xm04.mx.aol.com
Content-Type: message/delivery-status
Reporting-MTA: dns; rly-xm04.mx.aol.com
Arrival-Date: Fri, 22 Oct 2004 09:26:51 -0400 (EDT)
Final-Recipient: RFC822; lorenzo672(_at_)cs(_dot_)com
Action: failed
Status: 5.1.1
Remote-MTA: DNS; air-xm04.mail.aol.com
Diagnostic-Code: SMTP; 550 MAILBOX NOT FOUND
Last-Attempt-Date: Fri, 22 Oct 2004 09:26:54 -0400 (EDT)
- --JAC28061.1098451614/rly-xm04.mx.aol.com
Content-Type: text/rfc822-headers
Received: from 4.Red-80-59-43.pooles.rima-tde.net
(4.red-80-59-43.pooles.rima-tde.net [80.59.43.4]) by
rly-xm04.mx.aol.com (v101_r1.6) with ESMTP id
MAILRELAYINXM41-60541790a9433e; Fri, 22 Oct 2004 09:26:47 -0400
Received: from zort.org (zort.org [203.123.8.13])
by 4.Red-80-59-43.pooles.rima-tde.net (Postfix) with ESMTP id
0DD34AE64E
for <lorenzo672(_at_)cs(_dot_)com>; Fri, 22 Oct 2004 08:13:28 -0500
Message-ID: <111001c4b838$801237cb$1a0b10a0(_at_)zort(_dot_)org>
From: "Molotov J. Wilmer" <cavorted(_at_)zort(_dot_)org>
To: Lorenzo <lorenzo672(_at_)cs(_dot_)com>
Subject: Reply: Loevly Woman Taking Ccok Hard & Fast
Date: Fri, 22 Oct 2004 08:13:28 -0500
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0010_5EB58371.CC618A9C"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1409
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409
X-AntiVirus: skaner antywirusowy poczty Wirtualnej Polski S. A.
X-AOL-IP: 80.59.43.4
X-AOL-SCOLL-SCORE: 1:0:0:
X-AOL-SCOLL-URL_COUNT: 2
- --JAC28061.1098451614/rly-xm04.mx.aol.com--
=== Header in question ===
Regards,
- --
Ziaur Rahman
Email: zia(_at_)zort(_dot_)org,mzrahman(_at_)gmail(_dot_)com
Web: http://www.zort.org
PGP Key: 0x1C1C0123 (http://pgp.mit.edu)
Finger: http://stuff.mit.edu/cgi/finger?zia(_at_)zort(_dot_)org
.-.-.-.-.-.-.-.-.- Quote-o-moment .-.-.-.-.-.-.-.-.-.
Monday is an awful way to spend one seventh of your life.
.-.-.-.-.-.-.-.-.- Quote-o-moment .-.-.-.-.-.-.-.-.-.
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBQXv8z53fAo4cHAEjEQLwcwCfavI2Y5ru8dhW73QY4R/KRnhvalwAmwQB
QM6qFflS5t99qUHf2Bw12nx5
=HZyv
-----END PGP SIGNATURE-----