I agree. We use fairly non-aggressive lists. Our issue is our mail server receives mail from several dozen domains, many of which have existed for years and were very public about their accounts, worse we are asked medical questions so we can't filter out key words that would typically be associated with Spam.
It used to be that we would rather accept a bad email than lose a good one, but that sentiment is beginning to shift. -----Original Message----- From: David Morris [mailto:[EMAIL PROTECTED] Sent: Thursday, August 31, 2006 7:13 PM To: Gus Zader Cc: [email protected] Subject: RE: [gb-users] E-mail proxy question Order of testing will effect the statistics .... if you check blacklisted IPs first, then most invalid user names will never be seen so it is likely that this report actually agrees with the other reports of 90% invalid users. When invalid user is tested before IP reputation, on the order of 90% is what I see. Some blacklists are maintained on a fairly arbitrary basis and are totally non-responsive to issue reports. Black list success such as described below would surely temp one to utilize them. OK if there is no downside legal or financial risk associated with not receiving email. Otherwise, tread carefully when adopting blacklists. On Thu, 31 Aug 2006, Gus Zader wrote: > I'm rejecting at my mail server, we're rejecting at the black list level > something over 560,000 messages per day. > > Invalid names run at about 2000 per day. > > Bounce backs from mail servers rejecting mail we DIDN'T send runs at around > 1500 a day. > > > > -----Original Message----- > From: Richard Ashley [mailto:[EMAIL PROTECTED] > Sent: Thursday, August 31, 2006 12:04 PM > To: [email protected] > Subject: RE: [gb-users] E-mail proxy question > > Your results are very close to mine. For our domain, approx 90% of > incoming emails are "directory harvesting" spam (spam to nonexistent > users), and are rejected by our filtering software. > > > -----Original Message----- > From: Mason Landrum [mailto:[EMAIL PROTECTED] > Sent: Thursday, August 31, 2006 11:54 AM > To: [email protected] > Subject: RE: [gb-users] E-mail proxy question > > > Hi All, > > Since I implemented the suggestion by David (listed below) I am now > seeing over 90% of our mail rejected. The rejections should be rejected > because they are addressed to users we don't have in our organization. > I'm just amazed at the amount of junk mail we are receiving. My > questions is, is 90% what the rest of you are also seeing, or do me have > a problem somewhere that I need to look into. > > > Sincerely, > Mason Landrum > > > -----Original Message----- > From: David Brooks [mailto:[EMAIL PROTECTED] > Sent: Thursday, August 24, 2006 10:28 AM > To: [email protected] > Subject: Re: [gb-users] E-mail proxy question > > Hi, > > You can create an Object of type Mail Sentinel (v4.0) that contains all > email address in your organization. Then in the Policy you can > reference the new object as the destination of the email. In effect you > only accept email for the listed users. You may need some admin type > emails such [EMAIL PROTECTED], [EMAIL PROTECTED] > > > David > > > > At 10:17 AM 8/24/2006, Martin Hepworth wrote: > >Mason Landrum wrote: > >>Everyone, > >>We are receiving a tremendous amount of junk e-mail and undeliverable > >>messages for e-mails we have not sent. Most of these are addressed to > >>individuals that do not exist within our organization. My questions > >>is, is there a way to deny these e-mails at the Gnatbox proxy level > >>before they get to the e-mail server. Right now my e-mail proxy is > >>limited to only allowing the correct domain name to be accepted. Can I > > >>tighten this down to specific e-mail addresses like > >>[EMAIL PROTECTED] Thank you in advance for your help. > >>Sincerely, > >>Mason Landrum > >>______________________________________________________________________ > >>This email has been scanned by the MessageLabs Email Security System. > >>For more information please visit http://www.messagelabs.com/email > >>______________________________________________________________________ > >>------------------------------------------------------ > >>To unsubscribe: [EMAIL PROTECTED] > >>For additional commands: [EMAIL PROTECTED] > >>Archive: http://archives.gnatbox.com/gb-users/ > > > >I do this at the MTA level. With sendmail you'll have to purchase > >(small cost) milter-ahead or with other MTA's you can do it for free. > > > >EG with exim its a simple ACL to lookup AD/LDAP or a file of valid > >addresses and reject non-existent ones.. > > > >-- > >Martin Hepworth > >Senior Systems Administrator > >Solid State Logic > >Tel: +44 (0)1865 842300 > > > >********************************************************************** > > > >This email and any files transmitted with it are confidential and > >intended solely for the use of the individual or entity to whom they > >are addressed. If you have received this email in error please notify > >the system manager. > > > >This footnote confirms that this email message has been swept for the > >presence of computer viruses and is believed to be clean. > > > >********************************************************************** > > > >------------------------------------------------------ > >To unsubscribe: [EMAIL PROTECTED] > >For additional commands: [EMAIL PROTECTED] > >Archive: http://archives.gnatbox.com/gb-users/ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > > > ______________________________________________________________________ > This email has been scanned by the MessageLabs Email Security System. > For more information please visit http://www.messagelabs.com/email > ______________________________________________________________________ > > ______________________________________________________________________ > This email has been scanned by the MessageLabs Email Security System. > For more information please visit http://www.messagelabs.com/email > ______________________________________________________________________ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ ------------------------------------------------------ To unsubscribe: [EMAIL PROTECTED] For additional commands: [EMAIL PROTECTED] Archive: http://archives.gnatbox.com/gb-users/
