[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] Re: 6. Proposals: MTA MARK

To: Tomi Panula-Ontto <tomi@panula-ont.to>
Subject: Re: [Asrg] Re: 6. Proposals: MTA MARK
From: David Maxwell <david@crlf.net>
Date: Wed, 10 Dec 2003 14:16:34 -0500
Cc: asrg@ietf.org
In-reply-to: <009501c3bf1c$4a00c5e0$6400a8c0@INTRA.KOODIA.FI>
List-archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <00e001c3b5ac$ab5f55a0$6400a8c0@INTRA.KOODIA.FI> <3FC78099.8080409@elvey.com> <004c01c3b650$60c77870$0323a8c0@Jimiboy> <3FC92518.2020604@elvey.com> <008e01c3b81b$53cbaa70$6400a8c0@INTRA.KOODIA.FI> <3FD2079B.80106@elvey.com> <009a01c3be43$5d74fc60$6400a8c0@INTRA.KOODIA.FI> <3FD62AA0.8000606@solidmatrix.com> <009501c3bf1c$4a00c5e0$6400a8c0@INTRA.KOODIA.FI>
Sender: asrg-admin@ietf.org
User-agent: Mutt/1.4.1i

On Wed, Dec 10, 2003 at 02:51:11PM +0200, Tomi Panula-Ontto wrote:
> True, but actually, MTAMark and ReverseMX don't address the issue of
> hijacked computers completely. It merely changes the situation so that
> the hijacked computer will not take direct connections to the receiving
> MTAs,
> but instead spammers must try
> a) to make the hijacked computers send messages via registered MTA for that
> network
> b) hijack the dns server (to register that hijacked computer)
> c) hijack the registered MTA
> d) any ideas?
> 
> Anyway, it'll limit their possibilities and will target their efforts
> on compromising the MTAs, workstations and DNS servers.

The key is:

MUA running machines are maintained by end-users.
MTA/DNS running machines are maintained by network administrators.

The MTA/DNS machines are likely to be orders of magnitude more safe from
attacks, due to correct configuration, choice of OS, up to date patch
sets...

-- 
David Maxwell, david@vex.net|david@maxwell.net -->
Net Musing #5: Redundancy in a network doesn't mean two of everything and
half the staff to run it.
					      - Tomas T. Peiser, CET      


_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] Re: 6. Proposals: MTA MARK
  - From: Yakov Shafranovich

References:
- [Asrg] Reverse MX [RMX] proposal
  - From: Tomi Panula-Ontto
- [Asrg] Re: 6. Proposals: LMTP vs. rDNS / Reverse MX [RMX] proposals
  - From: Matthew Elvey
- Re: [Asrg] Re: 6. Proposals: LMTP vs. rDNS / Reverse MX [RMX] proposals
  - From: Tomi Panula-Ontto
- Re: [Asrg] Re: 6. Proposals: LMTP vs. rDNS / Reverse MX [RMX] proposals
  - From: Tomi Panula-Ontto
- Re: [Asrg] Re: 6. Proposals: MTA MARK
  - From: Tomi Panula-Ontto
- Re: [Asrg] Re: 6. Proposals: MTA MARK
  - From: Yakov Shafranovich
- Re: [Asrg] Re: 6. Proposals: MTA MARK
  - From: Tomi Panula-Ontto

Prev by Date: Re: [Asrg] Re: 6. Proposals: MTA MARK
Next by Date: RE: [Asrg] 0. General - Review of the CRI subgroup
Previous by thread: Re: [Asrg] Re: 6. Proposals: MTA MARK
Next by thread: Re: [Asrg] Re: 6. Proposals: MTA MARK
Index(es):
- Date
- Thread