Personally I don't see where ingress filters that only allow registered SMTP servers to initiate TCP connections on port 25 is irresponsible.
Any user sophisticated enough to legitimately require a running SMTP server should also have the sophistication to create a dns entry and register it with his upstream in whatever manner is required. There will never be a painless or easy solution to this problem, only a choice where we select the lesser of all evils. Tim -----Original Message----- From: Petri Helenius [mailto:[EMAIL PROTECTED] Sent: Monday, February 16, 2004 16:06 To: Timothy R. McKee Cc: 'J Bacher'; [EMAIL PROTECTED] Subject: Re: Anti-spam System Idea Timothy R. McKee wrote: >There will *never* be a concerted action by all service providers to >filter ingress/egress on abused ports unless there is a legal >requirement to do so. Think 'level playing field'... > > Havenīt it been stated enough times previously that blindly blocking ports is irresponsible? There are ways to similar, if not more accurate results without resorting to shooting everything that moves. Pete