Security Basics mailing list archives

RE: email address "spoofed"

From: "Aditya, ALD [Aditya Lalit Deshmukh]" <aditya.deshmukh () online gateway technolabs net>
Date: Wed, 10 Mar 2004 15:32:14 +0530

Note that by now many SMTP servers reject mail unless they get *some*
answer on the reverse lookup; few spend much effort detecting spoofed 
HELO names, which often are made-up IP addresses or the name of the
receiving server (in hopes of bypassing any relay filters in place).

this is the case of the server on which the openssl mailing list run, the server will try to reverse resolve the domain
if it does not get it responce it simply reject all the mail. this is good at cutting spam. but there is a problem who
get his address assigned on a dhcp lease that expires every 8 hours, of course all the forward dns records are updates
as soon as this occurs but the reverse dns my isp refuses to set them up. so i have to use some very convuluted method
to send mail to openssl mailing list.

i think, the server should try to forward resolve the dns name that it recieves in helo and if it does not match then
reject, because setting up the reverse is in the hands of whoever controls the dns server. many times this is not
someone who would setup and update the reverse records

-aditya

________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

email address "spoofed" Tim Laureska (Mar 08)
- RE: email address "spoofed" David Gillett (Mar 08)
  - RE: email address "spoofed" Aditya, ALD [Aditya Lalit Deshmukh] (Mar 10)
    - RE: email address "spoofed" David Gillett (Mar 11)
    - RE: email address "spoofed" Aditya, ALD [Aditya Lalit Deshmukh] (Mar 15)
    - RE: email address "spoofed" David Gillett (Mar 15)
- Re: email address "spoofed" pablo gietz (Mar 08)
- Re: email address "spoofed" Torry Crass (Mar 08)
- RE: email address "spoofed" Panagiotis (Mar 09)
- Re: email address "spoofed" AgfTech Lists (Mar 09)
- Re: email address "spoofed" Luis E. Alvarado Day (Mar 09)
  - Re: email address "spoofed" Adrian Hall (Mar 11)
- <Possible follow-ups>
- RE: email address "spoofed" Chinnery, Paul (Mar 08)

(Thread continues...)