nanog mailing list archives

Re: Incoming SMTP in the year 2017 and absence of DKIM

From: Chuck Anderson <cra () WPI EDU>
Date: Wed, 29 Nov 2017 15:38:29 -0500

On Wed, Nov 29, 2017 at 12:17:57PM -0800, Michael Thomas wrote:

The real problem with large enterprise that we found, however, is
that it was really hard to track down every 25 year
old 386 sitting in dusty corners that was sending mail directly
instead of through corpro servers to make certain
that everything was signed that should be signed. Maybe that's
gotten better in the last 15 years, but I'm not too hopeful.


15 years ago we blocked outbound port 25 except from our campus mail
servers.  That should be SOP by now.  It is fairly easy to look at
firewall logs to find these.

Current thread:

Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM, (continued)
- - - Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
    - Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM Michael Thomas (Dec 01)
    - Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
    - Re: lists and DMARC and ARC, was Incoming SMTP in the year 2017 and absence of DKIM Michael Thomas (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Eric Kuhnke (Dec 01)
    - RE: Incoming SMTP in the year 2017 and absence of DKIM Keith Medcalf (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Michael Thomas (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Michael Thomas (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM Chuck Anderson (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM John Levine (Dec 01)
- Re: Incoming SMTP in the year 2017 and absence of DKIM Benoit Panizzon (Dec 01)
  - Re: Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
- Re: Incoming SMTP in the year 2017 and absence of DKIM Brian Kantor (Dec 01)
  - Re: Incoming SMTP in the year 2017 and absence of DKIM Grant Taylor via NANOG (Dec 01)
  - Re: Incoming SMTP in the year 2017 and absence of DKIM John Levine (Dec 01)
    - RE: Incoming SMTP in the year 2017 and absence of DKIM Keith Medcalf (Dec 01)
    - Re: Incoming SMTP in the year 2017 and absence of DKIM John Levine (Dec 01)