In message <Pine.LNX.3.95.980212172850.27889B-100000@spock.leben.com>, you wrot
e:
>Chuq,
>
>OK, so you block all of juno. Now the twit goes to get an account at yahoo
>(or the many other free web based email sites). Now what? Same twit,
>different domain, and no way to know exactly who it is. Sure you can block
>yahoo, but where does it end?
>
>This is a real problem, one with no real solution that I can think of.
Actually, there is.
My junk E-mail filter now includes some anti-forgery logic. If the
domain name given in the return addresses of a messages doesn't seem
to have any relationship to any of the domain names mentioned in the
various Received: headers (as is the case for most forged spam), then
the message gets bounced back to the sender with a polite note telling
the sender that the message could not be delivered bacsue it looks
``suspicious'' and that the sender _can_ cause the message to be de-
livered by sending it again, this time including a magic code in the
Subject: header. If the sender does that, then the sender becomes
automagically whitelisted for the specific recipient, and the sender
will never have to go through this ``registration protocol'' again.
(Subsequent messages from the same sender to the same recipient will
be delivered without any special fuss.)
P.S. Kids, don't try this at home. In order to make this all work
right you have to have a really good E-mail header parser _and_ also
additional code to look up MXes for various domain names. I happen
to have both.
-- Ron Guilmette, Roseville, California ---------- E-Scrub Technologies, Inc.
-- Deadbolt(tm) Personal E-Mail Filter demo: http://www.e-scrub.com/deadbolt/
-- Wpoison (web harvester poisoning) - demo: http://www.e-scrub.com/wpoison/
References:
|
|
