On 10/21/07, D'Arcy J.M. Cain <darcy@druid.net> wrote:
If something comes that is not whitelisted then email is sent back asking you to confirm that it is not spam. I received one of these confirmation requests for a piece of spam that I did not send out. I complained to them that this was not being a good neighbour. While I sympathize with their spam problem I did not appreciate that they turned it into my problem.
D'Arcy, Do you publish SPF records so that remote sites can detect forgeries claiming to be from your domain? If so, shame on them. Enough is known about the forgery problem at this point that there's little excuse for autoresponse to a detectably forged message. If not, shame on you. You do realize that section 3.7 of RFC 2821 requires their server to notify the sender if they can't deliver the message, right? Find the paragraph that starts, "If an SMTP server has..." Just because a lot of spam filters break the RFC and just drop the message on the floor doesn't mean its the proper thing to do. Like the fence around your backyard swimming pool, you should have an SPF record for your domain. Otherwise it may become an attractive nuisance. That would be your fault. Regards, Bill Herrin -- William D. Herrin herrin@dirtside.com bill@herrin.us 3005 Crane Dr. Web: <http://bill.herrin.us/> Falls Church, VA 22042-3004