On Sun, 2005-11-27 at 14:40 +1100, Chris wrote:
Please take these actions:
1. Do not accept emails to bogus recipients.
2. Do not accept emails from forged senders: here is how to easily
reject forged emails: http://www.openspf.org/
3. Do not send bounce messages in response to forged emails
4. Do not "bounce" the body of any emails (bounce only the headers
if you have to bounce anything at all) - this prevents spammers
using you to re-send their spam bodies.
These four can be condensed -- instead, the single rule should be 'just
don't generate bounce messages'.
You should never, during normal operation, accept a mail by SMTP unless
you're actually going to deliver it.
Do _all_ your checking, whether it includes SPF or not, before giving a
successful response to the end of the DATA. If you don't want the mail,
then just say so. Don't accept it and then find yourself stuck with the
task of bouncing it.
--
dwmw2
-------
Sender Policy Framework: http://www.openspf.org/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com