On 11/13/2007, < Dickie Bradford > ([EMAIL PROTECTED]) wrote: > Currently, I am running 1.3.3.8 and I see in the logs that unknown > email inbound for unknown accounts is being rejected.
Yes, this is called 'recipient validation' and is - or should be - a requirement for any legitimate email server setup for all email that server is authoritative for. > I am sure the spammers have some way of using this to find valid > accounts to spam, How can i make assp just drop email bound for > unknown accounts? Please DON'T do this... why try to fix a problem that doesn't exist? Security through obscurity doesn't work. Dictionary attacks are a fact of life. > I have looked through the features several times and I know its > there, proably staring me in the face, could someone point it out to > me where to find it. Again - don't do this... why in the world would you want to accept mail for non-existant users? This would dramatically increase the load on your server. Not to mention disabling NDRs for legitimate messages that may have a typo in the email address - those senders will be informed of the mistake and have the opportunity to correct it. -- Best regards, Charles ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
