Hi,

My mail server is currently using ServerBeach's DNS servers. In the last few days my outgoing mail queue has pretty much tripled in size because of Verisign's latest scam.

If you're not aware, all faked domains by spammers, or indeed mistyped domains by users, are now legitimate domains, directed to Verisign servers, so mailservers can no longer reject many fake or mistyped email addresses.

There are BIND patches available to put DNS back to normal and work around this outrageous behaviour. Please please ServerBeach, consider installing them!!!

/ir

You can reject mail for any domain which resolves to the IP address of sitefinder. :)

-knightfoo

Easier said than done :-(

My mail server (Communigate Pro) doesn't support this, in fact it's not something I've come across before in any mail software? It requires an IP blacklist based on a lookup of the senders from address.

Traditional blacklisting doesn't apply, as it's based on the sending servers IP, which isn't the same as the IP of the senders domain name.

CGP will reject if the domain doesn't resolve, but now *all* .com and .net domains resolve.

We can't just blacklist Verisign's IP to reject any of their "bounce" messages, as then anyone who sends an email to an incorrect address (eg typo) will never get an error message, their mail will just disappear and they won't know it wasn't delivered.

sigh.....

I formally request that Serverbeach DNS please block Verisign's SiteFinder. Many of the ISPs big and small have already done so. It will only benefit your customers by doing so too.

Yup and godaddy has already sued Verisign over their site finder.

Leave it up to GoDaddy. They are always on top of anything having to do with Verisign.


Don