Andy Bakun wrote:
On Fri, 2005-09-23 at 10:18 +0200, johnp wrote:
(I suspect that MUA
was Outlook _Express_, not one of the versions with a number/year in
it's name, which is notoriously lacking in basic features).
Outlook Express does allow the configuration of SMTP logon by SASL on port 587 - that is
why I use it.
I stand corrected. I think the original point (not mine) was that there
are still clients in use that don't support things like changing the
submission port to something other than 25 or using various
authentication methods and encryption. In my opinion, these clients
need to be upgraded, they are too ancient and feature-lacking to be used
on today's Internet. Not upgrading is only going to cause these users
problems in the long term.
I haven't found any problem mail-clients yet for port 587 and smtp-login by SASL, but
there are some that have problems with SSL/TLS.
...have a massive number of physical access points in homes and offices, all of which
are authenticated to an open smtp relay by virtue of paying their monthly fee. This is
ridiculous.
Considering this ISP seems to be not entirely unusual in USA, and the fact that USA
generates well over 50% of the world's junk mail, you don;t have to be a rocket scientist
to see the correlation - - - and the obvious solution.
Yes, you and I are in agreement. Additional levels of authentication in
order to authorize actions when they happen, rather than just because
they are connected to the network, help control the use of resources.
Allows use, while lessening abuse (or at least being able to accurately
track it).
I continue to be staggered by what is basically an open relay in everyone's home or office
in the USA. What other countries ISP's allow such behaviour?
This all came to light because a new customer in Alaska wanted an e-mail account on my
server, so I sent them all the details to allow them to configure their MUA. Then I get a
call to say that they can't get it to work, and after some to'ing and fro'ing it
transpires that they don't know how to, and the tech rep from the ISP doesn't know how to
either - so he configures it as a spoof on the ISP's open relay!
I was under the impression that open relays were being n=black-listed somewhere. Is this
not the case? Or are they being judicious and "allowing" ISP's customers open relay's
because to black-list them all would be just too heavy?
I ask theses questions in SPF-Discuss, because if there is such a proliferation of
"customers" open relays - what chance is there of ever killing spam?
Slainte,
JohnP.
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com