nanog mailing list archives
Re: Spamhaus...
From: William Herrin <bill () herrin us>
Date: Wed, 24 Feb 2010 10:48:48 -0500
On Wed, Feb 24, 2010 at 8:21 AM, Rich Kulawiec <rsk () gsp org> wrote:
On Sun, Feb 21, 2010 at 10:59:08PM -0600, James Hess wrote:But if the origin domain has not provided SPF records, there are some unusual cases left open, where a bounce to a potentially fake address may still be required.Nothing stops an attacker from using a throwaway domain to send traffic to known backscatterers, who will then backscatter it to $throwawaydomain, whose MX's are set to $victim's MX's.
So? You, I and everyone else these days are no longer running open relays. You don't host $throwawaydomain so the session will end at the rcpt command. If someone merely wants to DDOS your server there are far easier ways. Regards, Bill Herrin
it's never appropriate to respond to abuse with abuse. ---Rsk
-- William D. Herrin ................ herrin () dirtside com bill () herrin us 3005 Crane Dr. ...................... Web: <http://bill.herrin.us/> Falls Church, VA 22042-3004
Current thread:
- Re: Spamhaus..., (continued)
- Re: Spamhaus... Larry Sheldon (Feb 20)
- Re: Spamhaus... William Herrin (Feb 20)
- Re: Spamhaus... John Levine (Feb 20)
- Re: Spamhaus... William Herrin (Feb 21)
- Re: Spamhaus... Paul Vixie (Feb 22)
- Re: Spamhaus... Rich Kulawiec (Feb 21)
- Re: Spamhaus... William Herrin (Feb 21)
- Re: Spamhaus... Patrick W. Gilmore (Feb 21)
- Re: Spamhaus... James Hess (Feb 21)
- Re: Spamhaus... Rich Kulawiec (Feb 24)
- Re: Spamhaus... William Herrin (Feb 24)
- RE: Spamhaus... Tomas L. Byrnes (Feb 21)
- RE: Spamhaus... Tomas L. Byrnes (Feb 21)
- Re: Spamhaus... Paul Vixie (Feb 21)
- Re: Spamhaus... Michelle Sullivan (Feb 21)
- Re: Spamhaus... Valdis . Kletnieks (Feb 22)
- Re: Spamhaus... Steven Champeon (Feb 19)
- Re: Spamhaus... Christopher Morrow (Feb 18)
- Re: Spamhaus... John Levine (Feb 18)
- Re: Spamhaus... Marc Powell (Feb 19)