Anyone from NeuLeve.bizl listening?
Suresh Ramasubramanian
suresh at outblaze.com
Fri Dec 12 02:04:46 UTC 2003
Stewart, William C (Bill), RTSLS writes on 12/11/2003 8:37 PM:
> - Personally I like the suggestion that someone had that you
> start serving DNS for the fake names, either pointing to 127.0.0.3
> or to a CNAME pointing to Annoying-spammers-forged-their-DNS-again.com,
> which is some disposable address block on which you run a web site
> and stub email server explaining that it's not your fault.
That was my idea. And I would not recommend the "or" option about
setting a clever sounding DNS record "annoying-spammers-forged-dns".
A lot of skript kiddies are out there with limited to zero email header
reading / DNS skills, who still know just enough to download and launch
rootkits and DoS attacks.
This is an old and time honored tradition to deal with lusers anyway,
kind of like the warez.* "ftp servers" (though one of the more popular
of these, warez.slashdot.org, seems to have found itself a non-localhost
IP some months back) :(
And more to the point, you don't waste your bandwidth dealing with DNS
queries and bounced email hitting your customer's server.
srs
--
srs (postmaster|suresh)@outblaze.com // gpg : EDEDEFB9
manager, outblaze.com security and antispam operations
More information about the NANOG
mailing list