> If this is a true DDOS, and not just blowback from a distributed spam run, the > hosts that are hitting you are very likely to be zombies located on dynamic > blocks, *not* legitimate e-mail servers. Your risk of blocking legitimate > e-mail should be very low (i.e. I have not, in the last month, had a single > report of a legitimate server with a dynamic IP address being blocked). > Obviously if you go this route, you are strongly urged to have an internal DNS > whitelist ready to go, just in case you do need to whitelist more than a few > servers.
Oh and the "attacks" that I've been noticing like this are, as John calls them, blowback from spam run. They're all to fake addresses on my domains but the majority of them are from postmaster at what look like valid servers -- Matthew Harrell Rome did not create a great empire Bit Twiddlers, Inc. by having meetings - they did it by [EMAIL PROTECTED] killing all those who opposed them.
