[Mimedefang] OT: New Sendmail spam block

[Jan Pieter Cornet]

On Thu, Mar 24, 2005 at 04:47:40PM -0600, Ben Kamen wrote:
> James Ebright wrote:
> > On Thu, 24 Mar 2005 16:17:45 -0600, Ben Kamen wrote
> > It doesnt sound Kosher to me... but... I have to ask.. why is your server 
> not
> > sending him a FQDN that resolves correctly in DNS as the HELO?
> 
> It's a norton anti-virus gateway sitting behind a firewall. Right now, it 
> just hands out it's hostname to the server it's talking to. I'm not even 

So then _you_ are breaking rfc1123 too, since you MUST ensure that
the <domain> parameter is a valid principal host domain name, ie:
at least a FQDN (copying the exact wording of the rfc you yourself
quoted).

This "gateway" looks like it isn't ready to be speaking directly
to the internet. You're better off letting it speak to some internal
outgoing smarthost, which is explicitly configured to have lax input
checking (but only accepts connections from an IP range you control),
which in turn sends the messages out.

Most ISPs have such a host available, and it is usually configured to
take RFC violations by various closed-source MUAs and badly behaving
firewalls for granted, and reformat messages as the rest of the
internet expects it.

-- 
#!perl -wpl # mmfppfmpmmpp mmpffm <pmmppfmfpppppfmmmf at fpffmm4mmmpmfpmf.ppppmf>
$p=3-2*/[^\W\dmpf_]/i;s.[a-z]{$p}.vec($f=join('',$p-1?chr(sub{$_[0]*9+$_[1]*3+
$_[2]}->(map{/p|f/i+/f/i}split//,$&)+97):qw(m p f)[map{((ord$&)%32-1)/$_%3}(9,
3,1)]),5,1)='`'lt$&;$f.eig;                                # Jan-Pieter Cornet