On Wed, 2012-01-11 at 18:57 +0530, Balachandran Sivakumar wrote:
is setting that up a big problem? In the old days domains used to bemailserver
blacklisted without much evidence. Nowadays I see that if a
gets a mail purporting to be from my domain, it verifies to seewhether
the said mail *actually* comes from the IP of my domain.
Yes, they use stuff like SPF, DKIM etc. Setting them up is not
a big problem. But neither is it trivial.
You need to know what problem you are trying to solve to
decide on the technology to use. If you just want to check the
ip/domain thing that you mentioned above, you need to use SPF. But if
the spammer sends to a domain that doesn't check for SPF/DKIM, and the
RCPT TO sent by the spammer doesn't exist(very likely), you will
receive a bounce mail. And if the spammer had done say 20 invalid RCPT
TOs, you will receive as many bounces. When you run your own servers,
you need to take care of all these scenarios.
The bigger problem is that the adoption of such techniques is
not high. And a few claim that these techniques are controversial as
well. But may be, I am going off topic with this whole bunch of mails.
Sorry :( Thanks