On Fri, May 27, 2005 at 12:16:52PM -0500, [EMAIL PROTECTED] wrote: > I think this is an awesome idea! > > I hate getting stupid emails about how my spam or virus was rejected from > someone I've never heard of. I can't very well be sending out Outlook > viruses > from a Linux box! > > Its just adding to the problem of wasting bandwith with worthless mail.
You could probably do this with a SA rule. I do it with MIMEDefang milter. If an email is from <> or <MAILER-DAEMON> then I check the mail for a line that looks like /^Received.*one.of.our.ip.addresses/. If it doesn't have the line, then I reject the mail with a 554 and "Bounced message did not originate here." This has eliminated all the bogus bounces of spam and bogus virus alerts. I think virtually all MTAs include original message headers when bouncing (even the ones that are sending the bogus spam and virus bounces) so we haven't had any issues with this for the 6 months we've been doing it. Theoretically a legitimate bounce that didn't include the original message headers would be rejected, but then it should end up with the postmaster of the original bouncer and they will see the cause of the error and fix their MTA. But if that has happened to us, no one has complained. Matt -- Matthew S. Cramer <[EMAIL PROTECTED]> Office: 717-396-5032 Infrastructure Security Analyst Fax: 717-396-5590 Armstrong World Industries, Inc. Cell: 717-917-7099