That article doesn't say anything about a PTR-based detection method, nor is there anything in the actual white paper.
so?
What ASTA says is
that unspecified ("unreasonable"?) levels of misbehavior _may_ result
in blocking a whole ISP--this statement is meant to include _all_ mail
from an ISP's IPs
hey, if somebody wants to be a BOFH to that level, that's fine with me. Their MX, their policies. I personally advise NOT blocking non-subscriber MTAs.
ie,
PTR is ipt.aol.com: totally blockable.
Any other PTR with aol.com in it, no block.
They don't use any terms anywhere in the 19-page paper regarding "detection" of designated mailers by PTR parsing.
so? the logs of any MTA as MX (which excludes Imail) that logs the unknown/PTR hostname is easily analyzable for subscriber PTR regex's. My list is nearly 500 lines long, and I plan to renew it, and divide into per-country files.
In fact, the white paper specifically says that _there_ _is_ _no_ _standard_ for safely detecting allowed customer mailers!
so? we, who are fighting the problem, study our logs at our MXs and set our own polices. These big boys have finally got their stuff together to TALK about what to do, but let's THEM actually do it.
Everyone wants to block zombies. ASTA has not recommended a means of doing so that will not reject legitimate mail (otherwise, there would be no "risk" involved).
avoiding risk. stay in bed. blocking legit servers on unpoliced nets infested with zombies should cause the those blocked mail owners to bitch at their provider, not at the blockers. It's well past time to reflect our severe, increasing $pain of withstanding their spew back onto the offenders.
They know that trying to separate legits from zombies will cause hard-to-track FPs;
take the risk, wiht the benefit save your MX, and your SMTP bandwidth, and your users, and let the offending operators pay the price of having their unpoliced subscriber networks blocked.
and ready to roll heads. Not that I believe they'll actually do it, but _if_ they take the lead in wholesale blocking, that'll be awesome for everyone
exactly. it is quite amazing that such corporate "committee"-decided policy actually has interest vs weasally, toothless play-it-safe. Let's see if they have the conviction to put some bite into behind their bark.
It's not encouraging that NO big offending networks operators participated in this PR (comcast, adelphia, bellsouth, level3, t-online, charter, rr, cox, attbi, verizon, insightbb, videotron, telus, mchsi, shawcable, cable.mindspring, optonline, to say nothing of all the foreign subscriber nets.)
Len
_____________________________________________________________________ http://MenAndMice.com/DNS-training : Denver; NYC; San Jose http://IMGate.MEIway.com : free anti-spam gateway, runs on 1000's of sites
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
