[ExchangeList] Re: I NEED TO GRIPE!
- From: "Chris Wall" <Chris.Wall@xxxxxxxxxxxxxxxxxxx>
- To: <exchangelist@xxxxxxxxxxxxx>
- Date: Tue, 24 Oct 2006 11:44:05 -0400
Be careful... When following these directions you should also look into
'Tarpitting' with Exchange 2003.
Also, if you use a Smart Host, third party solution for Spam/Virus
protection, then 'Recipient Filtering' is not of much use to you. If
using a product/solution between your exchange environment and the
sender, you should look at the options available to you for LDAP
authentication or some type of Directory Services verification in that
product/solution. Once again, if you have a solution between Exchange
and the sender, then that is where you need to focus on stopping the
'acceptance' of the e-mail. In this type of design, which many admins
have in place, the recipient filtering in Exchange is not of much
benefit to you.
Regards,
Chris Wall - MCSE + Messaging
NAM Exchange Administrator
Chris.Wall@xxxxxxxxxxxxxxxxxxx
T (919) 460.3236
F (919) 468.4889
Global Knowledge
LEARNING. To Make a Difference.
http://www.globalknowledge.com
________________________________
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Danny
Sent: Tuesday, October 24, 2006 11:28 AM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
Referencing http://support.microsoft.com/kb/886208
To configure recipient filtering, follow these steps:
1.
Start the Exchange System Manager tool.
2.
Expand Global Settings, right-click Message Delivery , and then click
Properties.
3.
Click the Recipient Filtering tab, click to select the Filter recipients
who are not in the Directory check box, and then click OK.
4.
When you receive the following message, click OK:
Connection, Recipient, and Sender Filtering must manually be enabled on
specific SMTP virtual server IP address assignments as they are not
enabled by default. For more information on how to enable any of the
above filtering types, read their associated help.
5.
Expand Servers, expand your computer, expand Protocols , expand SMTP,
right-click Default SMTP Virtual Server, and then click Properties.
6.
On the General tab, click Advanced.
7.
Click Edit, click to select the Apply Recipient Filter check box, and
then click OK three times.
On 10/24/06, Jabber Wock <jabberwock99@xxxxxxxxx> wrote:
Hi,
Does Exchange 2003 reject unconfigured email addresses in the SMTP
conversation, or does it accept and then bounce (backscatter)? Is there
a way to confgure Exchange 2003 to ensure no backscatter?
JW
On 10/24/06, John T (Lists) <johnlist@xxxxxxxxxxxxxxxxxxx > wrote:
Well, ya know, I do have my own DNS servers...
Na, sounds like more work and I have enough to do for clients as it is.
John T
eServices For You
"Seek, and ye shall find!"
-----Original Message-----
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of William
Lefkovics
Sent: Monday, October 23, 2006 10:28 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
An RBL for servers that allow OOFs to list posts... now you're on to
something.
________________________________
From: exchangelist-bounce@xxxxxxxxxxxxx [mailto:
exchangelist-bounce@xxxxxxxxxxxxx
<mailto:exchangelist-bounce@xxxxxxxxxxxxx> ] On Behalf Of William
Lefkovics
Sent: Monday, October 23, 2006 9:44 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
That depends on your perspective, John. I am not failing to understand
it at all. SpamCop was one of the RBLs I used back in 2002-2003 or so.
I understood the principles then, and I understand them now.
That does not mean I should concur with your all or nothing religious
stance on the subject.
While I can forgive your inability to handle 'backscatter', does it mean
independent entities should be out looking for servers that do this
because it meets *their* definition of spam? That meets *my* definition
of vigilanteeism.
You should start your own RBL. It isn't difficult. Well, it was easier
7 or 8 years ago, I think.
________________________________
From: exchangelist-bounce@xxxxxxxxxxxxx [mailto:
exchangelist-bounce@xxxxxxxxxxxxx
<mailto:exchangelist-bounce@xxxxxxxxxxxxx> ] On Behalf Of John T (Lists)
Sent: Monday, October 23, 2006 2:10 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
William, what you and others are failing to understand is that SpamCop
is not the bad guy here, any one who is first accepting email for
non-existing addresses and THEN bouncing are the causes of the problem
and SpamCop is merely pointing that fact out.
It is entirely irresponsible for a company/entity to at first accept
delivery of email destined to non-existent addresses and then bounce.
This causes backscatter and additional spam, often to innocent people in
the form of forged from addresses. That is not acceptable in this day
and age.
If a spammer is spreading spam and using a forged address that is one of
mine, and your server first accepts that spam and then bounces it to the
forged from address, mine, I will not hesitate one minute to cause your
server to be listed on RBL!
If the destination email address is non-existent, you must reject, not
accept then bounce.
John T
eServices For You
"Seek, and ye shall find!"
-----Original Message-----
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of William Holmes
Sent: Monday, October 23, 2006 12:20 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
I am not ignoring spam. I am ignoring RTBL because of their marginal
usefulness and the fact that they can change their policy and affect
email flow to my organization. In my environment they improve the
detection of spam only by about 3% while preventing quiet a bit of
legitimate mail. I find Bayesian filters much more effective and they
don't "decide" to change policy on a whim.
It is not appropriate (at least in my opinion) to violate RFC822 just to
say you are a more effective spam filter. This is ostensibly what they
(spamacop) are doing. Then again if you don't agree you are welcome to
continue using their services.
Bill
________________________________
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Moon, Brendan
Sent: Monday, October 23, 2006 1:58 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: I NEED TO GRIPE!
Sticking your head in the sand isn't going to solve the problem.
Neither is avoiding the use of RBLs in your own shop. The point is that
the 'generally accepted' customs and standards change with the times.
Most spam senders falsify the "from" address. This means that the NDRs
you send out to the Internet go to a forged address, and end up in some
unsuspecting soul's mailbox. As Spamcop asserts, this is arguably just
as bad as the original spam.
- Brendan Moon
--
CPDE - Certified Petroleum Distribution Engineer
CCBC - Certified Canadian Beer Consumer
Other related posts:
