Hosting Provided By

Re: a small explanation on rule FORGED_RCVD_HELO

From: Kai Schaetzl <maillists(at)conactive.com>
Date: Tue Aug 14 2007 - 06:31:31 EDT

Claude Frantz wrote on Tue, 14 Aug 2007 11:11:31 +0200:

> Please note the case of clients connected to the network via NAT and
> using dynamic IP addresses. In the general case, such clients do not
> known about the IP address to which one their local address is
> translated using NAT. Such clients cannot set a correct HELO.

I would guess the rule uses only the last non-trusted received = it compares the HELO *we* got from it with the rDNS.

Kai

-- 
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: 
http://www.conactive.com

Received on Tue Aug 14 06:32:17 2007

This message: [ Message body ]
Next message: Kai Schaetzl: "Re: So lets change it to "sa-update doesn't""
Previous message: ram: "fake MX records"
In reply to: Claude Frantz: "Re: a small explanation on rule FORGED_RCVD_HELO"
Next in thread: Matt Kettler: "Re: a small explanation on rule FORGED_RCVD_HELO"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Oct 24 2007 - 05:18:24 EDT