Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)

To: Douglas Otis <dotis at mail-abuse.org>, ietf at ietf.org
Subject: Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)
From: Harald Tveit Alvestrand <harald at alvestrand.no>
Date: Sun, 18 Feb 2007 12:48:39 +0100
Cc:
In-reply-to: <1171797010.3230.557.camel@dcore.sonic.net>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <45D7B40B.30409@sun.com> <1171797010.3230.557.camel@dcore.sonic.net>

--On 18. februar 2007 03:10 -0800 Douglas Otis <dotis at mail-abuse.org> wrote:

The IP address of the SMTP client can be found within an ASN to uncover
a network provider.  Helos might verify, which may then also identify a
domain used by a network provider's customer.  Of course the host names
within the reverse PTR may also verify as well.  Identifying the network
provider is perhaps the most reliable, as an IP address represents a
basic element of message interchange and routing.


Identifying the previous hop, you mean.

If this was effective, blacklists would have solved the spam problem.

If you're lucky (no relays), you're identifying the botnet component that was hijacked into sending the message.

Haven't we been here before?

_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)
  - From: Tony Finch

References:
- Does our passport need to be valid for 6 months to go to Prague?
  - From: Radia Perlman
- Identifications dealing with Bulk Unsolicited Messages (BUMs)
  - From: Douglas Otis

Prev by Date: Identifications dealing with Bulk Unsolicited Messages (BUMs)
Next by Date: Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)
Previous by thread: Identifications dealing with Bulk Unsolicited Messages (BUMs)
Next by thread: Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: Identifications dealing with Bulk Unsolicited Messages (BUMs)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.