On 25/11/2009 14:10, Vic wrote:
>
>>> Is it becoming common practice to sliently drop messages instead of
>>> bouncing them (because of forged return-paths) ?
>>
>> Yes. If you send a bounce message for unknown recipients, you get
>> used for backscatter attacks
>
> This is not true for *rejections*, rather than bounces. Rejection is the
> appropriate response to spam and forgery.
To elaborate on this, as long as your border mail servers (ALL those
listed in the MX records) will reject unknown recipients, you shouldn't
be a problem.
This is preferable and means you don't need to handle the spam traffic
and whatever server tried sending to you will have to decide whether to
drop or bounce.
You should only get bounces in a store and forward situation from your
smarthost server (which of course is not configured to allow arbitrary
relaying :)
(An exception is forwarded addresses but this are minor)
The backscatter only comes in of you have border servers that accept
unconditionally then pass on to internal server.
--
Dee Earley (dee@???)
irc: irc://irc.blitzed.org/
web: http://www.earlsoft.co.uk
phone: +44 (0)780 8369596
