PeterJ Posted May 4, 2004 Share Posted May 4, 2004 I am a SpamCop mail user. I have some questions regarding how SpamCop handles incoming mail as my IP is currently on DSBL. Here are the headers from a message I sent to my wife a couple days ago to help illustrate my question: (EDIT: I forgot to mention that my wife also has a SpamCop mail account, so this sample message was sent from my Windows mail client using our ISPs SMTP server and received by her SC mail account) Return-Path: <X[at]devnull.spamcop.net> Delivered-To: spamcop-net-Z[at]devnull.spamcop.net Received: (qmail 24031 invoked from network); 2 May 2004 00:47:29 -0000 Received: from unknown (192.168.1.101) by blade6.cesmail.net with QMQP; 2 May 2004 00:47:29 -0000 Received: from smtp802.mail.sc5.yahoo.com (22.214.171.124) by mailgate.cesmail.net with SMTP; 2 May 2004 00:47:28 -0000 Received: from unknown (HELO spamcop.net) (X[at]ameritech.net[at]126.96.36.199 with plain) by smtp802.mail.sc5.yahoo.com with SMTP; 2 May 2004 00:47:25 -0000 Message-ID: <> Date: Sat, 01 May 2004 20:47:17 -0400 From: X <X[at]devnull.spamcop.net> User-Agent: X-Accept-Language: en-us, en MIME-Version: 1.0 To: Y CC: Z[at]devnull.spamcop.net> Subject: [Fwd: Northwest... Content-Type: multipart/mixed; boundary="------------010202030601000201010901" X-spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on blade6 X-spam-Level: X-spam-Status: hits=0.8 tests=CLICK_BELOW,HTML_40_50,HTML_FONTCOLOR_UNKNOWN, HTML_FONT_BIG,HTML_MESSAGE,LINES_OF_YELLING,LINES_OF_YELLING_2 version=2.63 X-SpamCop-Checked: 192.168.1.101 188.8.131.52 184.108.40.206 X-SpamCop-Disposition: Blocked list.dsbl.org First I understand that I can simply force my broadband modem to get a new IP address, but for now I want to keep this slightly poisoned IP so that I might understand better. I use SBC Yahoo for a DSL connection and my IP for now is 220.127.116.11. I did upgrade my firmware on my router recently, so I probably got a new IP after that. I read here and elsewhere that many people do not accept mail from dynamic IPs (of course), therefore one with a dynamic IP should send mail via their ISP. Well this is where I am a little confused because the above sample is a mail that I sent via SBC Yahoo's SMTP server, so why would SpamCop hold the above mail? Does SpamCop test every IP in the headers when considering what to hold? Is there a similar and parallel process to the "mailhosts" implementation for reporting, perhaps behind the scenes, for incoming mail? Or maybe the mailhosts data is utilized by the parsing process on incoming mail... It seems to me that SpamCop could simply recognize that the email came from a legitimate SMTP server (18.104.22.168) and continue without testing my actual IP address. Thinking aloud: Is the reason this will not work because although many spammers are using open proxies now, some are still using throwaway dial up accounts and actually sending through the ISPs SMTP instead of direct to MX? As this whole open proxy thing continues to blow up, it seems to me that pollution of dyamic IP pools is going to continue to get worse. Does anyone know if spammers are using "thowaway" broadband accounts? It can't be cheap enough for this yet, can it? Ok, someone bring me up to speed on this please. Link to comment Share on other sites More sharing options...
This topic is now archived and is closed to further replies.