Dirk the Daring wrote:
I've theorized that if the connecting host issues a RSET followed by
another (valid) HELO, the connection can proceed and be successful. This
might be why the connection is not immediately dropped. Also, I use
FEATURE(`delay_checks'), which may have something to do wi
Dirk the Daring wrote:
# Check #4
# If the HELO is an FQDN, the index and rindex of "." will not
be the same
# This catches the spammer using domain.tld (which will slip
# by Check #2)
if ( index($helo, ".") == rindex($helo, ".") )
{
On Thu, 2006-11-09 at 23:06 -0500, Dirk the Daring wrote:
> # Check #3
> # HELO should not contain "localhost"
How effective is this for you? Do you run into false positives?
> # Check #4
> # If the HELO is an FQDN, the index and rindex of "
Jim McCullars and I have been discussing filter_helo offlist, and
David's observation (supported by Jim's experimentation) that if
filter_helo returns a REJECT, the connection is not immediately rejected,
but rather is rejected after MAIL FROM.
It happens that I have been using a heavily
4 matches
Mail list logo
