Steven Dickenson wrote: > Reject at SMTP time. > > Exim+Exiscan-ACL does this very well.
This is EXACTLY what MIMEDefang's action_bounce() call does- it issues a negative response after the DATA segment. However, if the message is being passed in to your system by a (relatively) innocent relay server- rather than from direct-to-MX ratware- that relay will then generate the potentially joe-jobbing DSN. The way I see it, I've already spent network and processing resources to accept the message and determine that it's probably spam; I might as well deliver it somewhere locally and either let the nominally intended recipient poke through their spam folder if they suspect an FP, or drop it in a semi-centralized administrative spam folder as a number of others have suggested. The only systems I'll actually reject mail from are those that have consistently shown themselves to be poorly configured in some way- one system recently got the booby prize of an entry in a server's firewall because it kept trying to resend the same message once (or more) per SECOND. There aren't many of these blocked systems- on the systems I administer at work, because I work for an ISP and I *MUST* accept a lot of mail I might not otherwise consider acceptable (and one system is two or three relays deep inside our network, so rejecting is just silly); and on my personal server because I've yet to have anyone really piss me off that far. -kgd -- Get your mouse off of there! You don't know where that email has been!
