Discussion:
FYI: Xtra to close 25/TCP Outbound...
Mark Foster
2006-04-03 03:28:20 UTC
Permalink
http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html


About Time!


Those of you who use Xtra, who are using alternative SMTP resources for
outbound mail, might pay to point back at smtp.xtra.co.nz...

Mark.



--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
A Red Fish
2006-04-03 04:33:04 UTC
Permalink
Hi Mark,

----- Original Message -----
From: "Mark Foster" <***@blakjak.net>
To: <***@lists.unixathome.org>
Sent: Monday, April 03, 2006 3:28 PM
Subject: FYI: Xtra to close 25/TCP Outbound...
Post by Mark Foster
http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html
About Time!
It's an unwarranted interference and a nuisance. When I use another POP/SMTP
mail server (eg on GMail, Yahoo, or a web space service), I don't want my
ISP blocking my access to it. I don't want to be dependent solely on Xtra's
mail server for outgoing mail. If another mail service I subscribe to
provides its own smtp server, I want to be able to use it.

The same applies to any port, service or content, really. An ISP shouldn't
block it except at my request.
Post by Mark Foster
Those of you who use Xtra, who are using alternative SMTP resources for
outbound mail, might pay to point back at smtp.xtra.co.nz...
Mark.
Brian Wrigley

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-03 04:45:32 UTC
Permalink
Post by A Red Fish
Hi Mark,
Hallo Brian! There is a name i've not seen in many a year...
Post by A Red Fish
----- Original Message -----
Sent: Monday, April 03, 2006 3:28 PM
Subject: FYI: Xtra to close 25/TCP Outbound...
Post by Mark Foster
http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html
About Time!
It's an unwarranted interference and a nuisance. When I use another POP/SMTP
mail server (eg on GMail, Yahoo, or a web space service), I don't want my
ISP blocking my access to it. I don't want to be dependent solely on Xtra's
mail server for outgoing mail. If another mail service I subscribe to
provides its own smtp server, I want to be able to use it.
The same applies to any port, service or content, really. An ISP shouldn't
block it except at my request.
This is unrealistic in the day and age we live in.
Note we're only talking about the blocking of access to port 25 here.
The amount of junk that propogates onto the internet from client-side
machines via direct SMTP connection on port 25 is as you're probably
aware, phenomonal. (I can post some stats from the blakjak.net mx as to
how much stuff is caught by the sorbs dynamic-ip blocklist i'm using, if
required.).

If you want to pop your mail from anywhere, Xtra are not blocking this.
If you want to send mail, theyre requiring that you use smtp.xtra.co.nz.
Given that SMTP is not tied to the place you're getting service from, this
is not a hindrance.
Oh, and I read on newsgroups a few moments ago that Gmails pop3/smtp
service don't use conventional ports, so youd remain unaffected anyway for
that service.

But you should be using your mail providers service for pop3 or imap only.
Your ISP should be your SMTP service provider. And as a dynamic-ip
(presumably) home-user you shouldn't be doing your own MX lookups anyway.
Tends to get you scored as a spammer or drone straight up.

If its outbound only, eg, to mitigate the affects of virus infections and
spam relay by drones, etc, then I support it fully.

I have put some commentary up @ http://www.blakjak.net - Including the NBR
article which Kerry mentioned (which i'd already located... snap!) that
has some useful comment. Still looking to see how the exceptions would be
handled - theyre offering exceptions at no cost it seems - and still
wanting to confirm that the affects would be outbound-only.

I use Xtra at home, still, and use smtp.xtra.co.nz - and rarely have any
problems. This move will prevent me from using my own MX for SMTP, but I
can always work around that if I have to.

Mark.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Brian Wrigley
2006-04-03 16:38:49 UTC
Permalink
----- Original Message -----
From: "Mark Foster" <***@blakjak.net>
To: "A Red Fish" <***@gmail.com>
Cc: <***@lists.unixathome.org>
Sent: Monday, April 03, 2006 4:45 PM
Subject: Re: Xtra to close 25/TCP Outbound...
Post by Mark Foster
Post by A Red Fish
Hi Mark,
Hallo Brian! There is a name i've not seen in many a year...
I do a lot of lurking...

M> >> http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html
Post by Mark Foster
Post by A Red Fish
Post by Mark Foster
About Time!
B> > It's an unwarranted interference and a nuisance. When I use another
Post by Mark Foster
Post by A Red Fish
POP/SMTP
mail server (eg on GMail, Yahoo, or a web space service), I don't want my
ISP blocking my access to it. I don't want to be dependent solely on Xtra's
mail server for outgoing mail. If another mail service I subscribe to
provides its own smtp server, I want to be able to use it.
The same applies to any port, service or content, really. An ISP shouldn't
block it except at my request.
M> This is unrealistic in the day and age we live in.

It seems to have been realisitic enough up until now. On fact, the last
couple of years I've seen a reduction in the amount of spam I receive, not
an increase, in all mail services except Xtra. In Xtra's case, I think it's
just policy - they want to sell me a filtering service so they send me spam
now that they used to delete. Most of it's not addressed to me but to
randomly generated addresses similar to mine.
Post by Mark Foster
Note we're only talking about the blocking of access to port 25 here.
The amount of junk that propogates onto the internet from client-side
machines via direct SMTP connection on port 25 is as you're probably
aware, phenomonal. (I can post some stats from the blakjak.net mx as to
how much stuff is caught by the sorbs dynamic-ip blocklist i'm using, if
required.).
How much genuine mail do you get that way (ie from individual machines or
non-isp servers)?
Post by Mark Foster
If you want to pop your mail from anywhere, Xtra are not blocking this.
If you want to send mail, theyre requiring that you use smtp.xtra.co.nz.
Given that SMTP is not tied to the place you're getting service from, this
is not a hindrance.
No? hehe, scroll down to this entry: http://www.blakjak.net/node/478
See why I don't want to be limited to using Xtra's smtp server?
Post by Mark Foster
Oh, and I read on newsgroups a few moments ago that Gmails pop3/smtp
service don't use conventional ports, so youd remain unaffected anyway for
that service.
Correct. GMail uses a secure connection on different port numbers, so GMail
will not be affected. But the Yahoo and the web host's servers are on the
conventional ports. It's totally reasonable and legitimate for me to want to
use those services, and unreasonable for Xtra to block my use of them.
Post by Mark Foster
But you should be using your mail providers service for pop3 or imap only.
Your ISP should be your SMTP service provider.
I beg to disagree with these particular "shoulds". There's no reason why
one's ISP need be one's only provider of SMTP services.
Post by Mark Foster
And as a dynamic-ip
(presumably) home-user you shouldn't be doing your own MX lookups anyway.
Tends to get you scored as a spammer or drone straight up.
Dynamic IP, yes. Although it can stay the same for months sometimes. And as
far as I know I'm not looking up MX records personally - unless Outlook
Express, or the router, or the Cold Fusion development server, do it behind
the scenes for some reason. What is an MX record for and when does it need
to be accessed? (if it's too complex to explain in a nutshell, just say so
and I'll look it up)
Post by Mark Foster
If its outbound only, eg, to mitigate the affects of virus infections and
spam relay by drones, etc, then I support it fully.
That's what they're trying to achieve, of course - blocking zombies sending
spam from their own smtp engines by connecting to the smtp server at each
domain they want to send mail to. Blocking the port casts the net wider than
this though.
Post by Mark Foster
article which Kerry mentioned (which i'd already located... snap!) that
has some useful comment. Still looking to see how the exceptions would be
handled - theyre offering exceptions at no cost it seems - and still
wanting to confirm that the affects would be outbound-only.
When the time gets closer I'll ask them for an exemption and see how they
handle it.

Brian

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-03 21:16:30 UTC
Permalink
G'day Brian. Response inline.
Post by Brian Wrigley
M> This is unrealistic in the day and age we live in.
It seems to have been realisitic enough up until now. On fact, the last
couple of years I've seen a reduction in the amount of spam I receive, not
an increase, in all mail services except Xtra. In Xtra's case, I think it's
just policy - they want to sell me a filtering service so they send me spam
now that they used to delete. Most of it's not addressed to me but to
randomly generated addresses similar to mine.
I've been running my own MX for a rather long time - I've lost count, but
at least 4 years. Spam volumes have gone _up_ in general. Note that I
don't process inbound mail via Xtra or any other ISP... I telehouse my own
system.
Post by Brian Wrigley
Post by Mark Foster
Note we're only talking about the blocking of access to port 25 here.
The amount of junk that propogates onto the internet from client-side
machines via direct SMTP connection on port 25 is as you're probably
aware, phenomonal. (I can post some stats from the blakjak.net mx as to
how much stuff is caught by the sorbs dynamic-ip blocklist i'm using, if
required.).
How much genuine mail do you get that way (ie from individual machines or
non-isp servers)?
Genuine email from home-connections? None. Home users who try to do
their own MX lookups tend to find their mail gets rejected for exactly the
reasons described. And, even if you had the power to influence local
ISPs, this doesn't change the situation when trying to send email
overseas, etc. If you want your mail to be accepted you need to adhere to
accepted best practise... or take your chances.
Post by Brian Wrigley
Post by Mark Foster
If you want to pop your mail from anywhere, Xtra are not blocking this.
If you want to send mail, theyre requiring that you use smtp.xtra.co.nz.
Given that SMTP is not tied to the place you're getting service from, this
is not a hindrance.
No? hehe, scroll down to this entry: http://www.blakjak.net/node/478
See why I don't want to be limited to using Xtra's smtp server?
All ISPs have this issue from time to time - welcome to the world of SMTP.
Its a 'best effort, FIFO' service. Anyone who relies on email for
time-critical notification of anything needs to be aware of this fact.

Thing is, I can easily work around the SMTP limitation by using my webmail
system as-required, even if I can't SMTP directly into my own host, thus
bypassing Xtra.
Also note this same logic - and similar problems - applied when I used
other ISPs... and i've used at least a couple of others in the last 10
years.
Post by Brian Wrigley
Post by Mark Foster
Oh, and I read on newsgroups a few moments ago that Gmails pop3/smtp
service don't use conventional ports, so youd remain unaffected anyway for
that service.
Correct. GMail uses a secure connection on different port numbers, so GMail
will not be affected. But the Yahoo and the web host's servers are on the
conventional ports. It's totally reasonable and legitimate for me to want to
use those services, and unreasonable for Xtra to block my use of them.
Incorrect. Convention dictates that regardless of where you get your mail
_from_ you should use your ISP smtp for sending. Services which advertise
the fact that their own SMTP server should be used as a preference - well,
given appropriate means of preventing abusive SMTP relay (smtp-after-pop
or Auth'd SMTP) this is technically OK, but unrealistic in this world of
viruses and drones. We need to adapt, or face the fact that email as we
know it is doomed.
Post by Brian Wrigley
Post by Mark Foster
But you should be using your mail providers service for pop3 or imap only.
Your ISP should be your SMTP service provider.
I beg to disagree with these particular "shoulds". There's no reason why
one's ISP need be one's only provider of SMTP services.
Plenty of reasons - tied to whole concept of SMTP being unauthenticated,
and therefore the 'authentication' of using your ISPs SMTP is in the ACLs
applied. Noone should expect to be able to do direct MX lookup from a
residential grade dynamic-IP host without also expecting to see their mail
get rejected in many cases, or marked as spam in others. *shrug*.

Note that idealistically I agree with you, but your perspective doesn't
really reflect the internet-at-large as of 2006. (or earlier.)
Post by Brian Wrigley
Post by Mark Foster
And as a dynamic-ip
(presumably) home-user you shouldn't be doing your own MX lookups anyway.
Tends to get you scored as a spammer or drone straight up.
Dynamic IP, yes. Although it can stay the same for months sometimes. And as
far as I know I'm not looking up MX records personally - unless Outlook
Express, or the router, or the Cold Fusion development server, do it behind
the scenes for some reason. What is an MX record for and when does it need
to be accessed? (if it's too complex to explain in a nutshell, just say so
and I'll look it up)
The nutshell version of what-is-an-MX. However let me first point out that
the protocol used by ISPs to deliver email between themselves is exactly
the same as that you use as an ISP client to send email out using Outlook
(etc)...

So the what-is-an-MX:

- MX record appears in the DNS zone file for any given domain.
- When a mail server wishes to deliver an email it needs to know where the
destination mail server for a given domain.... so an MX query is issued:

;; QUESTION SECTION (1 record)
blakjak.net. IN MX

;; ANSWER SECTION (1 record)
blakjak.net. 2h IN MX 5 mx.blakjak.net


So in a similar way to the query 'i want to get to www.google.com, what is
its IP?' as asked by your web browser (an A record query), a mail platform
asks for the 'mx' - the mail server. (Can be multiple responses; the
number denotes a priority where the lower the number, the higher the
precedence).

So in the above situation a further query - 'what is the IP of
mx.blakjak.net' is directed into the DNS - an answer supplied - and the
mail server can then go connect to it on port 25.

At home, your mail software doesn't do MX lookups. Instead you specify an
SMTP host. This is a 'fixed' address... eg, regardless of where you're
sending your email, you send it to this single host. SMTP service is
provided your ISP as a component of your internet account.

The ISPs SMTP server goes through the above lookup process and delivers
the mail on your behalf.
So from home, you're either:

- Sending mail to your ISPs SMTP server, to deliver on your behalf,
or
- Sending mail directly to the MX record of the domain youre sending to,
or
- Sending mail to a third party mail provider (ala Yahoo) who do what your
ISP does.

What Xtra are going to do is block the second option - your ability to do
direct MX lookups and then connect to them for SMTP purposes. It'll also
block the third option (use of a third party). The first option, which
99% of internet users will be using anyway, remains available.
Post by Brian Wrigley
Post by Mark Foster
If its outbound only, eg, to mitigate the affects of virus infections and
spam relay by drones, etc, then I support it fully.
That's what they're trying to achieve, of course - blocking zombies sending
spam from their own smtp engines by connecting to the smtp server at each
domain they want to send mail to. Blocking the port casts the net wider than
this though.
Given the above how do you discriminate?
Viruses use the same MX lookup process as a mail server does... the same
process you'd be using in the second example above. Theres no way to block
one and not the other.
If you look at any given mail server and put the number of 'legit'
messages received direct-from-sender next to the number of worms, viruses
and spam messages, .... the numbers speak for themselves.

Spam is no longer the fault of open mail relays - they rarely happen. Its
all about the infected-boxen, now.
Post by Brian Wrigley
Post by Mark Foster
article which Kerry mentioned (which i'd already located... snap!) that
has some useful comment. Still looking to see how the exceptions would be
handled - theyre offering exceptions at no cost it seems - and still
wanting to confirm that the affects would be outbound-only.
When the time gets closer I'll ask them for an exemption and see how they
handle it.
I'll be doing the same, in all likelyhood.

Mark.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
ihug_rich (fowarded from ihug)
2006-04-03 23:32:03 UTC
Permalink
It will be a cold day in hell before I use xtras SMTP server, every time I
have tried the comboniation of it having zero DNS entries relevent to the
domain name used in the from address, and its presence in some spam list has
resulted in at least one email going out being tagged as spam.

Using my hosts smtp which has the reverse lookup all set up (no SPF yet -
been too lazy to do that) and the mail gets thru without being tagged as
spam.

Happened for someone that I work with as well, because a lot of the content
of there newsletters gets picked up by the words in it.

The solution is for recipients to refuse mail based on it being a dynamic
IP, and having the reverse of the IP having nothing to do with the domain
name in question. That seems to work very well indeed. For shared servers
without there own IP there is SPF records but obviously when other people
have access to relay thru that same server you want to take it carefully.

Ideally all end user SMTP would require authentication, but that's not gonna
happen when there are broken AV packages around that still trap smtp when
they don't support secure or authenticated smtp.

-----Original Message-----
From: owner-***@unixathome.org [mailto:owner-***@unixathome.org] On Behalf
Of Mark Foster
Sent: Tuesday, April 04, 2006 9:17 AM
To: Brian Wrigley
Cc: Mark Foster; ***@lists.unixathome.org
Subject: Re: Xtra to close 25/TCP Outbound...


G'day Brian. Response inline.
Post by Brian Wrigley
M> This is unrealistic in the day and age we live in.
It seems to have been realisitic enough up until now. On fact, the
last couple of years I've seen a reduction in the amount of spam I
receive, not an increase, in all mail services except Xtra. In Xtra's
case, I think it's just policy - they want to sell me a filtering
service so they send me spam now that they used to delete. Most of
it's not addressed to me but to randomly generated addresses similar
to mine.
I've been running my own MX for a rather long time - I've lost count, but at
least 4 years. Spam volumes have gone _up_ in general. Note that I don't
process inbound mail via Xtra or any other ISP... I telehouse my own system.
Post by Brian Wrigley
Post by Mark Foster
Note we're only talking about the blocking of access to port 25 here.
The amount of junk that propogates onto the internet from client-side
machines via direct SMTP connection on port 25 is as you're probably
aware, phenomonal. (I can post some stats from the blakjak.net mx as
to how much stuff is caught by the sorbs dynamic-ip blocklist i'm
using, if required.).
How much genuine mail do you get that way (ie from individual machines
or non-isp servers)?
Genuine email from home-connections? None. Home users who try to do their
own MX lookups tend to find their mail gets rejected for exactly the reasons
described. And, even if you had the power to influence local ISPs, this
doesn't change the situation when trying to send email overseas, etc. If
you want your mail to be accepted you need to adhere to accepted best
practise... or take your chances.
Post by Brian Wrigley
Post by Mark Foster
If you want to pop your mail from anywhere, Xtra are not blocking this.
If you want to send mail, theyre requiring that you use smtp.xtra.co.nz.
Given that SMTP is not tied to the place you're getting service from,
this is not a hindrance.
No? hehe, scroll down to this entry: http://www.blakjak.net/node/478
See why I don't want to be limited to using Xtra's smtp server?
All ISPs have this issue from time to time - welcome to the world of SMTP.
Its a 'best effort, FIFO' service. Anyone who relies on email for
time-critical notification of anything needs to be aware of this fact.

Thing is, I can easily work around the SMTP limitation by using my webmail
system as-required, even if I can't SMTP directly into my own host, thus
bypassing Xtra.
Also note this same logic - and similar problems - applied when I used other
ISPs... and i've used at least a couple of others in the last 10 years.
Post by Brian Wrigley
Post by Mark Foster
Oh, and I read on newsgroups a few moments ago that Gmails pop3/smtp
service don't use conventional ports, so youd remain unaffected
anyway for that service.
Correct. GMail uses a secure connection on different port numbers, so
GMail will not be affected. But the Yahoo and the web host's servers
are on the conventional ports. It's totally reasonable and legitimate
for me to want to use those services, and unreasonable for Xtra to
block my use of them.
Incorrect. Convention dictates that regardless of where you get your mail
_from_ you should use your ISP smtp for sending. Services which advertise
the fact that their own SMTP server should be used as a preference - well,
given appropriate means of preventing abusive SMTP relay (smtp-after-pop or
Auth'd SMTP) this is technically OK, but unrealistic in this world of
viruses and drones. We need to adapt, or face the fact that email as we know
it is doomed.
Post by Brian Wrigley
Post by Mark Foster
But you should be using your mail providers service for pop3 or imap only.
Your ISP should be your SMTP service provider.
I beg to disagree with these particular "shoulds". There's no reason
why one's ISP need be one's only provider of SMTP services.
Plenty of reasons - tied to whole concept of SMTP being unauthenticated, and
therefore the 'authentication' of using your ISPs SMTP is in the ACLs
applied. Noone should expect to be able to do direct MX lookup from a
residential grade dynamic-IP host without also expecting to see their mail
get rejected in many cases, or marked as spam in others. *shrug*.

Note that idealistically I agree with you, but your perspective doesn't
really reflect the internet-at-large as of 2006. (or earlier.)
Post by Brian Wrigley
Post by Mark Foster
And as a dynamic-ip
(presumably) home-user you shouldn't be doing your own MX lookups anyway.
Tends to get you scored as a spammer or drone straight up.
Dynamic IP, yes. Although it can stay the same for months sometimes.
And as far as I know I'm not looking up MX records personally - unless
Outlook Express, or the router, or the Cold Fusion development server,
do it behind the scenes for some reason. What is an MX record for and
when does it need to be accessed? (if it's too complex to explain in a
nutshell, just say so and I'll look it up)
The nutshell version of what-is-an-MX. However let me first point out that
the protocol used by ISPs to deliver email between themselves is exactly the
same as that you use as an ISP client to send email out using Outlook
(etc)...

So the what-is-an-MX:

- MX record appears in the DNS zone file for any given domain.
- When a mail server wishes to deliver an email it needs to know where the
destination mail server for a given domain.... so an MX query is issued:

;; QUESTION SECTION (1 record)
blakjak.net. IN MX

;; ANSWER SECTION (1 record)
blakjak.net. 2h IN MX 5 mx.blakjak.net


So in a similar way to the query 'i want to get to www.google.com, what is
its IP?' as asked by your web browser (an A record query), a mail platform
asks for the 'mx' - the mail server. (Can be multiple responses; the number
denotes a priority where the lower the number, the higher the precedence).

So in the above situation a further query - 'what is the IP of
mx.blakjak.net' is directed into the DNS - an answer supplied - and the mail
server can then go connect to it on port 25.

At home, your mail software doesn't do MX lookups. Instead you specify an
SMTP host. This is a 'fixed' address... eg, regardless of where you're
sending your email, you send it to this single host. SMTP service is
provided your ISP as a component of your internet account.

The ISPs SMTP server goes through the above lookup process and delivers the
mail on your behalf.
So from home, you're either:

- Sending mail to your ISPs SMTP server, to deliver on your behalf, or
- Sending mail directly to the MX record of the domain youre sending to, or
- Sending mail to a third party mail provider (ala Yahoo) who do what your
ISP does.

What Xtra are going to do is block the second option - your ability to do
direct MX lookups and then connect to them for SMTP purposes. It'll also
block the third option (use of a third party). The first option, which 99%
of internet users will be using anyway, remains available.
Post by Brian Wrigley
Post by Mark Foster
If its outbound only, eg, to mitigate the affects of virus infections
and spam relay by drones, etc, then I support it fully.
That's what they're trying to achieve, of course - blocking zombies
sending spam from their own smtp engines by connecting to the smtp
server at each domain they want to send mail to. Blocking the port
casts the net wider than this though.
Given the above how do you discriminate?
Viruses use the same MX lookup process as a mail server does... the same
process you'd be using in the second example above. Theres no way to block
one and not the other.
If you look at any given mail server and put the number of 'legit'
messages received direct-from-sender next to the number of worms, viruses
and spam messages, .... the numbers speak for themselves.

Spam is no longer the fault of open mail relays - they rarely happen. Its
all about the infected-boxen, now.
Post by Brian Wrigley
Post by Mark Foster
the NBR article which Kerry mentioned (which i'd already located...
snap!) that has some useful comment. Still looking to see how the
exceptions would be handled - theyre offering exceptions at no cost
it seems - and still wanting to confirm that the affects would be
outbound-only.
When the time gets closer I'll ask them for an exemption and see how
they handle it.
I'll be doing the same, in all likelyhood.

Mark.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ, and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org with
"unsubscribe adsl" in the body of the message

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-03 23:44:53 UTC
Permalink
Post by ihug_rich (fowarded from ihug)
It will be a cold day in hell before I use xtras SMTP server, every time I
have tried the comboniation of it having zero DNS entries relevent to the
domain name used in the from address, and its presence in some spam list has
resulted in at least one email going out being tagged as spam.
Using my hosts smtp which has the reverse lookup all set up (no SPF yet -
been too lazy to do that) and the mail gets thru without being tagged as
spam.
Happened for someone that I work with as well, because a lot of the content
of there newsletters gets picked up by the words in it.
The solution is for recipients to refuse mail based on it being a dynamic
IP, and having the reverse of the IP having nothing to do with the domain
name in question. That seems to work very well indeed. For shared servers
without there own IP there is SPF records but obviously when other people
have access to relay thru that same server you want to take it carefully.
Ideally all end user SMTP would require authentication, but that's not gonna
happen when there are broken AV packages around that still trap smtp when
they don't support secure or authenticated smtp.
Rich
Sorry I dont entirely follow your reply.
Xtras mail server doesn't hold any DNS entries. Obviously.
The concept of a domain being hosted _by_ an ISP is universal, but people
who own their own domains and have them hosted by their provider don't
likewise expect a dns entry for their domain to point at their ISPs mail
network.
This would only penalise you if your mail domain in question has published
SPF that conflicts. Otherwise, for someone to score your message as 'spam'
on those grounds means their filter is being too aggressive.
Post by ihug_rich (fowarded from ihug)
The solution is for recipients to refuse mail based on it being a dynamic
IP, and having the reverse of the IP having nothing to do with the domain
name in question. That seems to work very well indeed. For shared servers
This particular paragraph, however, basically advocates some sort of
'dynamic IP blocklist'. These exist, but they serve to mitigate some of
the problems. Theyre vulnerable - huge admin overhead in keeping them
current. Thus why even when implemented, they dont block _all_ traffic.

Besides would it not be better to block at the source instead of the
destination?

Mark.

PS: I use smtp.xtra.co.nz most of the time, and have never seen my emails
score as viruses as a byproduct of using smtp.xtra.co.nz, despite the fact
I do my own domain mail handling and Xtra have _never_ hosted it.
I dare say that other habits - like posting in HTML as an example - do far
far more to increase the risk of a false-positive spam hit.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-03 23:49:05 UTC
Permalink
Post by Mark Foster
The concept of a domain being hosted _by_ an ISP is universal, but people
who own their own domains and have them hosted by their provider don't
likewise expect a dns entry for their domain to point at their ISPs mail
network.
Should clarify, i intended to say that there would not necessarily be an
address in your zone file that points to an ISP mail server.

eg.

if xyz.co.nz was hosted at Xtra,

the xyz.co.nz zone file would probably have

@ IN MX 20 mta.xtra.co.nz.

within its zone file.

The query 'XYZ.CO.NZ MX'

is going to get

20 MTA.XTRA.CO.NZ

as a response. Theres nothing wrong or invalid in that, and ive never
heard of this counting as a score toward a 'spam' markup...

Mark.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
ihug_rich (fowarded from ihug)
2006-04-04 00:14:33 UTC
Permalink
It doesn't count as invalid, but the reverse of that situation where the
source smtps reverse dns domain being the same as the domain that the mail
is from has a helpful effect on the mail getting thru when its weak in other
areas.

Likewise if the MX of the sender points back to the same machine, it goes
along way to automatedly (is that even a word) determining that the sender
is indeed correct. All of these have positive weightings and you need all
you can get with how aggressive some spam filters are these days.

Ive thought of another downside to using the xtra mail servers, in that they
will get any spamcop etc complaints to deal with, not me, so that means they
will most likely just do what they do whenever a clients machine is
compromised (turn off the connection or whatever) on invalid complaints.


-----Original Message-----
From: owner-***@unixathome.org [mailto:owner-***@unixathome.org] On Behalf
Of Mark Foster
Sent: Tuesday, April 04, 2006 11:49 AM
To: ***@lists.unixathome.org
Subject: RE: Xtra to close 25/TCP Outbound...
Post by Mark Foster
The concept of a domain being hosted _by_ an ISP is universal, but
people who own their own domains and have them hosted by their
provider don't likewise expect a dns entry for their domain to point
at their ISPs mail network.
Should clarify, i intended to say that there would not necessarily be an
address in your zone file that points to an ISP mail server.

eg.

if xyz.co.nz was hosted at Xtra,

the xyz.co.nz zone file would probably have

@ IN MX 20 mta.xtra.co.nz.

within its zone file.

The query 'XYZ.CO.NZ MX'

is going to get

20 MTA.XTRA.CO.NZ

as a response. Theres nothing wrong or invalid in that, and ive never
heard of this counting as a score toward a 'spam' markup...

Mark.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ, and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org with
"unsubscribe adsl" in the body of the message

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-04 00:37:06 UTC
Permalink
Post by ihug_rich (fowarded from ihug)
Ive thought of another downside to using the xtra mail servers, in that they
will get any spamcop etc complaints to deal with, not me, so that means they
will most likely just do what they do whenever a clients machine is
compromised (turn off the connection or whatever) on invalid complaints.
Funny how rumours start innit ;-)
All the FUD...

If Xtra's security team were to receive a complaint that one of their
customers was sending spam, they would look at the complaint at face value
and then take appropriate action.
That action would usually be a warning except in very rare circumstances
where sheer volume requires more urgent action.

Again this is typicall ISP standard practise. Not many ISPs can afford to
arbitrarily cut off users without some sort of warning first - as theres
always two sides to every story, the PR nightmare that would result from
an 'unfair' disconnection is not worth the headache.

One wonders why you expect to see traffic about your connection appearing
in Spamcop... Spamcop is used to report message which is assessed as spam
by a user, so unless theyre doing it maliciously, responsible internet
users should never have to be worried.. !

Mark.
(Posting for himself only, in case there was ever any doubt.)

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
ihug_rich (fowarded from ihug)
2006-04-04 00:55:31 UTC
Permalink
Had 4 complaints,

3 were the same user who just started working at a new job and thought they
would report anything that they received that they didn't like as spam, the
previous holder of the position had subscribed to the lists, the guy that
maintains the lists sorted them out in no time.

The last one was a user that felt they had the right to dictate when we did
and did not sent out emails because he didn't like getting spammed on his
phone. Luckilly there was enough info in the spamcop complaint to locate his
account and disable it.

It aint no viagra or other pill hawking outfit but the way some users react
you would think that they were.


-----Original Message-----
From: owner-***@unixathome.org [mailto:owner-***@unixathome.org] On Behalf
Of Mark Foster
Sent: Tuesday, April 04, 2006 12:37 PM
To: ihug_rich (fowarded from ihug)
Cc: ***@lists.unixathome.org
Subject: RE: Xtra to close 25/TCP Outbound...
Post by ihug_rich (fowarded from ihug)
Ive thought of another downside to using the xtra mail servers, in
that they will get any spamcop etc complaints to deal with, not me, so
that means they will most likely just do what they do whenever a
clients machine is compromised (turn off the connection or whatever)
on invalid complaints.
Funny how rumours start innit ;-)
All the FUD...

If Xtra's security team were to receive a complaint that one of their
customers was sending spam, they would look at the complaint at face value
and then take appropriate action.
That action would usually be a warning except in very rare circumstances
where sheer volume requires more urgent action.

Again this is typicall ISP standard practise. Not many ISPs can afford to
arbitrarily cut off users without some sort of warning first - as theres
always two sides to every story, the PR nightmare that would result from an
'unfair' disconnection is not worth the headache.

One wonders why you expect to see traffic about your connection appearing in
Spamcop... Spamcop is used to report message which is assessed as spam by a
user, so unless theyre doing it maliciously, responsible internet users
should never have to be worried.. !

Mark.
(Posting for himself only, in case there was ever any doubt.)

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ, and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org with
"unsubscribe adsl" in the body of the message

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Alastair Johnson
2006-04-04 01:26:20 UTC
Permalink
Post by ihug_rich (fowarded from ihug)
Had 4 complaints,
3 were the same user who just started working at a new job and thought they
would report anything that they received that they didn't like as spam, the
previous holder of the position had subscribed to the lists, the guy that
maintains the lists sorted them out in no time.
The last one was a user that felt they had the right to dictate when we did
and did not sent out emails because he didn't like getting spammed on his
phone. Luckilly there was enough info in the spamcop complaint to locate his
account and disable it.
It aint no viagra or other pill hawking outfit but the way some users react
you would think that they were.
This is a user education issue, and in part one perpetuated by the
'ease' of spamcop's reporting tools. Which drove me nuts when I worked
at an ISP.

Neither of your examples would be impacted by port 25 blocking, except
that the ISP would need to pass the complaints on to the end user.

Previous communications from Xtra have also indicated there will be a
way to opt out of this filtering, for those people who do run their own
mailservers.

And hey: If you really don't like it, you could always change ISPs.
Although I'd wager more over time will implement this.

aj.
--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message

Alastair Johnson
2006-04-04 00:37:42 UTC
Permalink
Post by ihug_rich (fowarded from ihug)
It doesn't count as invalid, but the reverse of that situation where the
source smtps reverse dns domain being the same as the domain that the mail
is from has a helpful effect on the mail getting thru when its weak in other
areas.
I've run a lot of mail platforms, including some reasonably large ones
for ISPs, and this is the first I've ever heard of this.

If it were true, I'd expect to see 80+% of email being scored down as a
result of the source mailserver not being having a reverse DNS entry for
the envelope-from. This is not the case, so either you have encountered
some overly aggressive scoring platforms, or this is just incorrect.
Post by ihug_rich (fowarded from ihug)
Likewise if the MX of the sender points back to the same machine, it goes
along way to automatedly (is that even a word) determining that the sender
is indeed correct. All of these have positive weightings and you need all
you can get with how aggressive some spam filters are these days.
Again, I think this is unlikely, given the number of mail platforms
where outgoing mail is not handled by inbound mail.
Post by ihug_rich (fowarded from ihug)
Ive thought of another downside to using the xtra mail servers, in that they
will get any spamcop etc complaints to deal with, not me, so that means they
will most likely just do what they do whenever a clients machine is
compromised (turn off the connection or whatever) on invalid complaints.
That is a risk.

Xtra's approach is a good one, and is about time they addressed it.
Many other large ISPs have had an identical system in place for years.
UUNET's UUDIAL platform has done this since 1999, for example. It is a
good thing, and I hope more ISPs implement it.

aj.
--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Tom Parker
2006-04-03 07:59:22 UTC
Permalink
Post by Mark Foster
http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html
Those of you who use Xtra, who are using alternative SMTP resources for
outbound mail, might pay to point back at smtp.xtra.co.nz...
They're pushing this issue from both ends. I'm on Ihug, and a number of
months ago, I got a bounce from AOL saying I was a dynamic host and they
wouldn't accept mail from me. Now I relay through Ihug's smtp. AOL's bounce
was clear and to the point, which was nice.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-03 08:40:57 UTC
Permalink
Post by Tom Parker
Post by Mark Foster
http://www.stuff.co.nz/stuff/0,2106,3623905a28,00.html
Those of you who use Xtra, who are using alternative SMTP resources for
outbound mail, might pay to point back at smtp.xtra.co.nz...
They're pushing this issue from both ends. I'm on Ihug, and a number of
months ago, I got a bounce from AOL saying I was a dynamic host and they
wouldn't accept mail from me. Now I relay through Ihug's smtp. AOL's bounce
was clear and to the point, which was nice.
Speaking as someone who spent many years doing ISP tech support, including
dealing with spam, virus payloads and drone hosts...

The _only_ accepted convention nowadays is for SMTP to be driven through
the ISP you gain internet access through.[1]

With SMTP being entirely seperate to POP3 or IMAP, this policy doesn't
impact on your ability to use third party mail services.[2]

'nuff said.

Mark.



[1] I'm aware this is a fairly strong statement and there are exceptions
to every rule. This is a generalisation that applies for 99% of email
users. The exceptions would include those who can obviously engineer
around this restriction anyway!

[2] SPF might be a complication; but if the provider you're using for mail
are not the people who provide your Internet Access, they should be
designing with this in mind anyway.
--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
LEE Tet Yoon
2006-04-03 18:17:29 UTC
Permalink
Speaking as someone who spent many years doing ISP tech support, including dealing with spam, virus payloads and drone hosts...
The _only_ accepted convention nowadays is for SMTP to be driven through the ISP you gain internet access through.[1]
With SMTP being entirely seperate to POP3 or IMAP, this policy doesn't impact on your ability to use third party mail services.[2]
'nuff said.
Are you sure you're right here? I first read this a few days ago and my understanding is they intend to block port 25 inbound. Note that the article you link to specifically mentioned people who run their own servers would be affected. Perhaps they're planning to block outbound as well but I've never seen any discussion about people having to make sure they use Xtra's SMTP server.

From previous articles I've read, not particularly technical either computerworld or NZ Herald my understanding is they're trying to ensure their users don't run open SMTP relays either by configuration errors or due to worm/bot infection. In theory smarter worm makers would just ensure their SMTP server bots use different ports but I guess at the moment there are still enough places where port 25 is not blocked that it's unlikely.

BTW although I know very little about the technical side of spam, I don't really get why it matters if you use xtra or another SMTP server. AFAIK very very few Xtra customers use their Xtra accounts to knowling send spam. AFAIK also most spam nowadays is sent via botnets and the like. Therefore the bigger problem is open relays who can unwittingly be used to send spam by spammers. Open relays are only effective if their email actually gets through and I'm guessing open relays on Xtra often are since if they'll tend to use the Xtra SMTP server which is trusted. I don't really get why people using a different SMTP server is a big issue.

For those who don't use Xtra's SMTP server if they are using a server which they have legitimate access to then I don't get why Xtra would care. I agree in general nowadays you have to use your ISP's SMTP server which makes sense but my impression was this was dealt with by the SMTP server not by ISPs trying to ban people using SMTP servers other then theirs. If an ISP does decide to accept SMTP traffic from addresses not belonging to them they generally have a means of verifying their customers. Failing that, they become open relays.

But AFAIK the way open relays are dealt with is not in trying to stop your customers using them since this isn't very effective but in ensuring open relays are closed by detecting them as soon as possible and banning them if they are not sufficiently closed when the owners informed. If I'm not mistaken, quite a number of South Korean ISPs particularly have this problem in not acting fast enough perhaps partially because their admins don't understand English so a number of servers ban email originating from South Korean servers.

So in conclusion, my reading is that 25 inbound will be closed, probably not outbound but I'm not sure. This makes more sense to me then closing outbound as well although I do realise it'll make big problems for those who legitimately decide to run their own servers which are properly set up. In any case, I guess the best thing to do would be to ask Xtra if anyone really cares. Not being an Xtra customer, I don't give a damn.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Alastair Johnson
2006-04-03 19:40:24 UTC
Permalink
Post by LEE Tet Yoon
Speaking as someone who spent many years doing ISP tech support, including dealing with spam, virus payloads and drone hosts...
The _only_ accepted convention nowadays is for SMTP to be driven through the ISP you gain internet access through.[1]
With SMTP being entirely seperate to POP3 or IMAP, this policy doesn't impact on your ability to use third party mail services.[2]
'nuff said.
Are you sure you're right here? I first read this a few days ago and my understanding is they intend to block port 25 inbound. Note that the article you link to specifically mentioned people who run their own servers would be affected. Perhaps they're planning to block outbound as well but I've never seen any discussion about people having to make sure they use Xtra's SMTP server.
From previous articles I've read, not particularly technical either computerworld or NZ Herald my understanding is they're trying to ensure their users don't run open SMTP relays either by configuration errors or due to worm/bot infection. In theory smarter worm makers would just ensure their SMTP server bots use different ports but I guess at the moment there are still enough places where port 25 is not blocked that it's unlikely.
BTW although I know very little about the technical side of spam, I don't really get why it matters if you use xtra or another SMTP server. AFAIK very very few Xtra customers use their Xtra accounts to knowling send spam. AFAIK also most spam nowadays is sent via botnets and the like. Therefore the bigger problem is open relays who can unwittingly be used to send spam by spammers. Open relays are only effective if their email actually gets through and I'm guessing open relays on Xtra often are since if they'll tend to use the Xtra SMTP server which is trusted. I don't really get why people using a different SMTP server is a big issue.
This is why they are blocking outgoing to non-Xtra mail servers, to
reduce the amount of botnet-sourced spam from their customers. This is
the primary reason.


btw, your lines don't seem to wrap at 72 characters.

aj.


--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Dustin, Dave
2006-04-03 19:12:46 UTC
Permalink
Blocking port 25 inbound won't reduce traffic volume. The zombies and open
relays will still use the bandwidth trying to send the mail. All it'll do
is annoy those of us who run our own mail systems at home (or small
business).

Blocking port 25 outbound is a good idea, because that means that those
machines that have become zombies that were sending messages using the SMTP
engine installed by the spammers will no longer be able to send mail, unless
the spam engine is smart enough to read the Windows registry, detect that a
SMTP relay is in place and then send the messages to the XTRA SMTP box(s)
and have that forward it on.

I've got no problem with Outbound blocking, providing XTRAs SMTP box has the
capacity to handle all outbound requests. Inbound makes little difference
to the average users.

For small business / geeks, it's good that they are offering the ability to
have the ports unblocked on a case by case basis. Though I'm assuming it'll
mean that you need to upgrade to one of the PRO accounts, thus providing a
static IP.

Dave

-----Original Message-----
From: LEE Tet Yoon [mailto:***@ihug.co.nz]
Sent: Tuesday, 4 April 2006 6:17 a.m.
To: ***@lists.unixathome.org
Subject: Xtra to close 25/TCP Outbound or Inbound?
Post by Mark Foster
Speaking as someone who spent many years doing ISP tech support, including
dealing with spam, virus payloads and drone hosts...
Post by Mark Foster
The _only_ accepted convention nowadays is for SMTP to be driven
through the ISP you gain internet access through.[1]
With SMTP being entirely seperate to POP3 or IMAP, this policy doesn't
impact on your ability to use third party mail services.[2]
'nuff said.
Are you sure you're right here? I first read this a few days ago and my
understanding is they intend to block port 25 inbound. Note that the article
you link to specifically mentioned people who run their own servers would be
affected. Perhaps they're planning to block outbound as well but I've never
seen any discussion about people having to make sure they use Xtra's SMTP
server.

From previous articles I've read, not particularly technical either
computerworld or NZ Herald my understanding is they're trying to ensure
their users don't run open SMTP relays either by configuration errors or due
to worm/bot infection. In theory smarter worm makers would just ensure their
SMTP server bots use different ports but I guess at the moment there are
still enough places where port 25 is not blocked that it's unlikely.

BTW although I know very little about the technical side of spam, I don't
really get why it matters if you use xtra or another SMTP server. AFAIK very
very few Xtra customers use their Xtra accounts to knowling send spam. AFAIK
also most spam nowadays is sent via botnets and the like. Therefore the
bigger problem is open relays who can unwittingly be used to send spam by
spammers. Open relays are only effective if their email actually gets
through and I'm guessing open relays on Xtra often are since if they'll tend
to use the Xtra SMTP server which is trusted. I don't really get why people
using a different SMTP server is a big issue.

For those who don't use Xtra's SMTP server if they are using a server which
they have legitimate access to then I don't get why Xtra would care. I agree
in general nowadays you have to use your ISP's SMTP server which makes sense
but my impression was this was dealt with by the SMTP server not by ISPs
trying to ban people using SMTP servers other then theirs. If an ISP does
decide to accept SMTP traffic from addresses not belonging to them they
generally have a means of verifying their customers. Failing that, they
become open relays.

But AFAIK the way open relays are dealt with is not in trying to stop your
customers using them since this isn't very effective but in ensuring open
relays are closed by detecting them as soon as possible and banning them if
they are not sufficiently closed when the owners informed. If I'm not
mistaken, quite a number of South Korean ISPs particularly have this problem
in not acting fast enough perhaps partially because their admins don't
understand English so a number of servers ban email originating from South
Korean servers.

So in conclusion, my reading is that 25 inbound will be closed, probably not
outbound but I'm not sure. This makes more sense to me then closing outbound
as well although I do realise it'll make big problems for those who
legitimately decide to run their own servers which are properly set up. In
any case, I guess the best thing to do would be to ask Xtra if anyone really
cares. Not being an Xtra customer, I don't give a damn.

--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ, and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org with
"unsubscribe adsl" in the body of the message
--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Mark Foster
2006-04-04 01:02:40 UTC
Permalink
Post by ihug_rich (fowarded from ihug)
Had 4 complaints,
3 were the same user who just started working at a new job and thought they
would report anything that they received that they didn't like as spam, the
previous holder of the position had subscribed to the lists, the guy
that maintains the lists sorted them out in no time.
Post by ihug_rich (fowarded from ihug)
The last one was a user that felt they had the right to dictate when we did
and did not sent out emails because he didn't like getting spammed on
his phone. Luckilly there was enough info in the spamcop complaint to
locate his
Post by ihug_rich (fowarded from ihug)
account and disable it.
It aint no viagra or other pill hawking outfit but the way some users react
you would think that they were.
None of these as an individual issue is going to risk your internet
connection.
And noting that full-headers are supplied via spamcop, any system with any
value involved in tracking down spam offenses is going to copy ***@xtra
(if theyre youre ISP) anyway, as complaints directly to the source of a
spam are rarely useful... !

Aka, The move to block port 25 is not really causing any more risk to you
at all.

I agree with AJ; its already accepted as standard practise in other parts
of the world and has been in place for more than 5 years in some cases.
More ISPs need to do it.

Mark.



--
This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to ***@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Loading...