with everything you should look at the effort, the returns and the risks. some
simple things can have major benefits but we shouldnt waste effort on major
changes that have little effect and that can be circumvented (i'm referring to
the port 25 blocking discussion of course, wrt bcp38 i dont t
I think I'll change my position on BCP38. It's pointless to try
blocking spoofed source addresses because:
* It doesn't solve every single problem
* It means more effort for service providers
* It requires more CPU processing power
* Using it will generate smarter "black hats".
I also think eve
