On Wednesday 26 November 2003 10:45 pm, Joel Newkirk wrote:
> On Wed, 2003-11-26 at 15:48, Antony Stone wrote:
> >
> > I'm not quite sure why you want to accept email only from Hotmail and
> > Yahoo, and from nowhere else (a lot of people I know do the exact
> > opposite!), however I still think an easier solution to your erquirement
> > is to accept all email through your firewall, and then accept only mail
> > from Hotmail / Yahoo on your mail server - because that can select based
> > on the sender's address, without needing to know the IPs of their mail
> > servers (which may change one day without you knowing).
>
> Ah, but the point is that while lots of spam claims to be from
> *@yahoo.com, if it comes to us from a known yahoo IP then we at least
> know it's a legitimate source address. The problem regarding yahoo and
> spam is NOT that yahoo is the source of so much spam, but that so much
> spam forges a yahoo.com source. The 'ideal' filter would reject any
> email claiming a yahoo sender that doesn't come from a yahoo mailserver.
I agree with this completely, however I didn't get the impression from the
original posting that this was the reason for wanting to do it in this case?
Even if this was the overall goal, I would still recommend filtering email on
the MTA (qmail in this case) rather than with netfilter.
Antony.
--
It is also possible that putting the birds in a laboratory setting
inadvertently renders them relatively incompetent.
- Daniel C Dennet
Please reply to the list;
please don't CC me.
