HOME

TheInfoList



OR:

Nolisting is the name given to a technique to defend
electronic mail Electronic mail (email or e-mail) is a method of exchanging messages ("mail") between people using electronic devices. Email was thus conceived as the electronics, electronic (digital media, digital) version of, or counterpart to, mail, ...
domain names against
e-mail spam Email spam, also referred to as junk email, spam mail, or simply spam, is unsolicited messages sent in bulk by email (spamming). The name comes from a Monty Python sketch in which the name of the canned pork product Spam is ubiquitous, unavoida ...
."Does 'nolisting' help stop spam?"
Feb 2007, M Edwards, Windows IT Pro"Nolisting: Poor Man's Greylisting"
/ref> Each domain name on the internet has a series of one or more
MX record A mail exchanger record (MX record) specifies the mail server responsible for accepting email messages on behalf of a domain name. It is a resource record in the Domain Name System (DNS). It is possible to configure several MX records, typically p ...
s specifying mail servers responsible for accepting email messages on behalf of that domain, each with a preference. Nolisting is simply the adding of an MX record pointing to a non-existent server as the "primary" (i.e. that with the lowest weighted value) - which means that an initial mail contact will always fail. Many spam sources don't retry on failure, so the spammer will move on to the next victim - while legitimate email servers should retry the next higher numbered MX, and normal email will be delivered with only a small delay.


Implementation

A simple example of MX records that demonstrate the technique: MX 10 dummy.example.com. MX 20 real-primary-mail-server.example.com. This defeats spam programs that only connect to the highest priority (lowest numbered) MX and do not follow the standard error-handling of retrying the next priority MX.


Drawbacks

* The technique relies on spammers using simple software that doesn't retry the next priority MX, and so becomes ineffective if or when spammers begin using more sophisticated software. * Some legitimate SMTP applications are also very simple and only send to the lowest numbered MX record. This might be the case with simple devices such as printers or data loggers, or with older legacy software. Mail from them will also fail unless there is some mechanism to allow a "
whitelist A whitelist, allowlist, or passlist is a mechanism which explicitly allows some identified entities to access a particular privilege, service, mobility, or recognition i.e. it is a list of things allowed when everything is denied by default. It is ...
" of IPs access to the mailserver via the lowest numbered MX record. * It is important that the highest priority (lowest numbered) MX should be completely unresponsive on port 25. If it is open and responds with a 4xx error, (i.e. "retry later"), then email from some MTAs (such as
qmail qmail is a mail transfer agent (MTA) that runs on Unix. It was written, starting December 1995, by Daniel J. Bernstein as a more secure replacement for the popular Sendmail program. Originally license-free software, qmail's source code was ...
), may be lost if they do not step to the next MX record, but instead wait and continually retry the first one."Other tricks"
Apache SpamAssassin


Similar techniques

There are alternate techniques that suggest "sandwiching" the valid MX records between non-responsive ones. Some variants also suggest configuring the highest-numbered hosts to always return 4xx errors (i.e. "retry later"). A simple example of MX records that demonstrate the technique: MX 10 dummy1.example.com. MX 20 real-primary-mail-server.example.com. MX 30 dummy2.example.com. Greylisting also relies on the fact that spammers often use custom software which will not persevere to deliver a message in the correct RFC-compliant way.


See also

* Greylisting *
Anti-spam techniques Various anti-spam techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) as opposed to ...


References

{{reflist


External links


Nolisting: Poor Man's Greylisting

Fight Spam With Nolisting
article on Slashdot
Other Trick for Blocking Spam
where the concept of using fake MX records was discussed. Spam filtering