ACL Email Rejection
It's all going to go belly-up again 
Quote from: axisofevil It's all going to go belly-up again
Got to admire your optimism!
Seriously though, don't speak too soon as I'm sure this really isn't going to have a lot of negative impact at all.
SteveA, this is just on mx.last.plus.net and mx.core.plus.net so the JTN boxes remain the same.
Quote from: Bob
SteveA, this is just on mx.last.plus.net and mx.core.plus.net so the JTN boxes remain the same.
It really would fix ALL my spam problems
I've been checking my spam headers when I've been sending them to SpamCop and every one of them has come from a compromised PC with no proper rDNS
It causes a wealth of issues when our mail exchangers stop accepting new connections. Email delays being the obvious one but it can also cause messages to be rejected where the receiving server uses sender-verify. It also compounds the problems we get from time to time with the anti-virus and anti-spam processes on the platform. We're erring on the side of caution as we're aware that spam levels are going to increase in the run up to Christmas and we've seen some unusual patterns across the mail queues since removing the original ACL blocking.
Yesterday there were extended periods of time where our mail servers were not accepting connections. Things aren't 100% ideal now even with the blocking as I'm periodically having problems telnetting to the mail platform
Yesterday there were extended periods of time where our mail servers were not accepting connections. Things aren't 100% ideal now even with the blocking as I'm periodically having problems telnetting to the mail platform
bpullen@pvs-csctools:~$ telnet mx.core.plus.net 25
Trying 84.92.2.1...
telnet: Unable to connect to remote host: Connection timed out
I am baffled.
Since a bot infected PC finds it possible to read the address book to provide a source of destination emails. Can it really be so difficult to be able to read the configuration file of the (almost guaranteed) Microsoft Outlook?
If the clever bot can do that, it will discover the name of the smart host and will use it.
This means that the rDNS lookups are a waste of time.
BTW I've never tried to write one of these bots - but once it is up and running it sounds very difficult to stop it.
Why do PlusNet bother?
Since a bot infected PC finds it possible to read the address book to provide a source of destination emails. Can it really be so difficult to be able to read the configuration file of the (almost guaranteed) Microsoft Outlook?
If the clever bot can do that, it will discover the name of the smart host and will use it.
This means that the rDNS lookups are a waste of time.
BTW I've never tried to write one of these bots - but once it is up and running it sounds very difficult to stop it.
Why do PlusNet bother?
But I sometimes receive spam in months with an "r" in them.
But I don't use this as a basis for recognition of spam.
Just because some spam doesn't have proper rDNS doesn't mean that there are people wanting emails even if the rDNS is flawed.
BTW I have elected to not have my emails spam-checked. Is it possible to make the SMTP servers do a lookup against my account (using the to-address field) to see if I want to accept all email? This would allow those people who see email as a necessity to be insulated against future changes.
But I don't use this as a basis for recognition of spam.
Just because some spam doesn't have proper rDNS doesn't mean that there are people wanting emails even if the rDNS is flawed.
BTW I have elected to not have my emails spam-checked. Is it possible to make the SMTP servers do a lookup against my account (using the to-address field) to see if I want to accept all email? This would allow those people who see email as a necessity to be insulated against future changes.