Am/On Mon, 16 Jul 2007 06:11:32 -0700 schrieb/wrote Marc Perkel: >One of the problems with SMTP in my opinion is that it allows end users >to talk on port 25 to servers and therefore can't be distinguished from >server to server traffic. > >Imagine a policy where ISPs blocked port 25 for consumers by default and >forced them to talk to mail servers on port 587 to send SMTP. Suppose >that all SMTP servers who took email from consumers had port 587 open as >well as port 25. > >If port 25 were blocked from consumers and they were forced to talk to >servers on port 587, even without authentication, then a server could >distinguish consumers from other servers. I think this kind of >configuration could be used to help isolate virus infected computers >from spamming and spreading. > >So if I have an SMTP server that is set up to receive email for a bunch >of domains and had port 587 closed then I could block out all spam from >consumer computers. The idea being that a lot of virus infected spam >bots would be isolated. It would force consumer traffic to talk only to >smtp servers set up to relay consumer email. > >Thoughts?
imho this won't work ... how you want to keep infected computers off from 25? there are already more effective tools to protect your server, like a good rule combination before the mail even gets to spamassassin. Thanks and all the best Matthias -- --------------------- [ SECURITY NOTICE ] --------------------- To: [EMAIL PROTECTED], [EMAIL PROTECTED] For your security, [EMAIL PROTECTED] digitally signed this message on 16 July 2007 at 13:49:02 UTC. Verify this digital signature at http://www.ciphire.com/verify. ---------------- [ CIPHIRE DIGITAL SIGNATURE ] ---------------- Q2lwaGlyZSBTaWcuAjhtYXJjQHBlcmtlbC5jb20sIHVzZXJzQHNwYW1hc3Nhc3Np bi5hcGFjaGUub3JnAGJldGFAYWRtaWxvbi5uZXQAZW1haWwgYm9keQBtBAAAfAB8 AAAAAQAAAE53m0ZtBAAAlAIAAgACAAIAIP0CLbVXygN8FBmbKstMB6JcUdhet15I Ff/4MQhzNWDdAQAOv7grZzUb4WQMq69DnEJONRUGHRTIcfvZQaPqa3Pmdn7JFyaY s5jnmxxxsa+4mExNmaIrF8SCHisJW2zI1PXCpCLLU2lnRW5k ------------------ [ END DIGITAL SIGNATURE ] ------------------
