Mailing List SIMS@mail.stalker.com Message #13868
From: Global Homes Webmaster <webmaster@globalhomes.com>
Subject: Re: AOL open relays
Date: Fri, 24 Oct 2003 12:23:07 -0700
To: SIMS Discussions <SIMS@mail.stalker.com>
X-Mailer: Mailsmith 2.0.2 (Blindsider)
On 10/24/03 at 12:09, Clement Ross wrote:

> Is AOL known to have open relays?

Probably more likely to be an unsecured proxy rather than an open relay. At
any rate, whatever other flaws they may have, AOL seems to be pretty good
at keeping a lid on spam coming out of their network. That said, I do
occasionally get spam relayed by AOL hosts, although it's rare enough that
it gets a raised eyebrow when I see it. In the case of AOL I think it's
worth the effort to report spamming incidents to abuse@aol.com.

> I received SPAM with the following "Received:" headers today:
>
> Received:  from ACB205A4.ipt.aol.com ([172.178.5.164] verified) by
> octave.hexact.net (Stalker SMTP Server 1.8b8) with SMTP id S.0000142894
> for <clement@hexact.net>; Fri, 24 Oct 2003 14:55:42 -0400
> Received:  from tlcfan.com [22.215.193.235] by ACB205A4.ipt.aol.com
> (Postfix) with ESMTP id DB585285CEEB for <clement@hexact.net>; Sat, 25
> Oct 2003 05:39:16 +0000
>
> 22.215.193.235 is from the DoD and 172.178.5.164 is allocated to AOL.
>
> Or maybe the Received header from 22.215.193.235 was forged?

Entirely possible. The only Received header you can trust 100% is the one
that was written by your own server (the topmost one).

--
                   Christopher Bort | cbort@globalhomes.com
            Webmaster, Global Homes | webmaster@globalhomes.com
                      <http://www.globalhomes.com/>
Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster