[Mimedefang] Requiring FQDN in HELO
James Ebright
jebright at esisnet.com
Wed Dec 28 16:00:17 EST 2005
In addition, I believe rejecting email due to an invalid HELO/EHLO is a
rfc violation in of itself (MUST NOT even). That said, the only ones I
reject are the ratware ones that say they are me (my ip blocks or
localhost or my own FQDN). ;-)
Jim
Cormack, Ken wrote:
>> The ultimate goal to allow filter_sender to reject any E-Mail where
>>the HELO is a blank string (spaces) or something like "localhost"
>>without any qualification. Are there any reasons that legit,
>>reasonbly-standards-compliant senders would do those things?
>>
>>
>
>In my environment, I've noticed that WAY too much valid email is sent from
>hosts that are lame in this respect, sending partial or non-FQDN hostnames,
>or that identify themselves with a hostname/domain/"tld" that might be
>appropriate for the sender's INTERNAL/PRIVATE environment
>(myhost.nowhere.not). To evaluate YOUR potential for success/risk, you
>might try just adding something in filter_sender, to perform logging-only,
>of the value of $helo. Then, you can review your list of log entries.
>
>
>
>
More information about the MIMEDefang
mailing list