Peter J. Holzer wrote:
There are quite a few people who rent a server in a different country (bandwidth is still a lot cheaper in the US or Germany than in Austria, for example) or who have registered domains in different countries because they look "cooler" (e.g. the .to top level domain).
Good point. But I do like the SPF idea - that "should" fix this. Whitelist if you have SPF set up for your domain, and if your mail is coming from where you say it is supposed to be coming from.
The country match thingy is just an attempt to seperate the bogus bs mail. I don't mind getting email that is genuine, even if it is trying to sell something - or otherwise commercial. I really hate email that forged, or otherwise deceptive. I personally don't see alot of this coming out of the better part of europe, and this issue hadn't occured to me. I honestly don't want to get to whitelisting/blacklisting specific geographic locations, that isn't my intention. And 500 before data is essential. Sticking the scrap mail in a separate folder isn't very exciting. Will have to think about it.
2. Keep track of ips that send multiple "from" domains. And black-list those.
This is true for just about any ISP. Even my private server (which has only one user) sends mail with 3 or 4 different from domains.
hp
Exactly. I am in the same boat. I don't necessarily block everything that has multiple domains. And automating this would be difficult. But I do look at multiple domains per IP and the ones that are obviously _not_ legitimate I add to the list. This currently accounts for less than 1% of my spam.
Waitman