I'm consolidating your three replies into one:
TheRoDent said:
Are you sure you don't work for WBS? You really are supporting them here all the way.
I'm not supporting anyone - don't twist my words. If you could see my IP, you'll see that I'm on ADSL. I am, however, considering iBurst and all the other wireless providers, since I'll be moving soon, and ADSL will likely not be an option.
Just because I'm providing a reasoned debate / discussion, do not make assumptions about my loyalties. I'm just as pissed off about the state of affairs in South Africa, but sometimes the sheer level of moaning on this site gets me down.
For your information: Spamassassin has a number of rules that consider the "Received:" path chain of an email. This Received: path is now being changed due to WBS forcing mail through their server.
Umm, no, spamassassin has no concept of what headers are. It uses Bayesian modeling to arrive at a estimate of an email's spamminess. There is no concept of it constructing a Received: path and making deductions from it.
The first, is a score on the time difference between the "Received:" headers. Do we trust WBS to keep their SMTP servers' clocks synchronized? Yeah, we trust them to read their helpdesk email too...
What it *does* in fact check, is whether the date of the email is significantly different from the current time, and then it must be differing by an order of days, not minutes or seconds.
Secondly, spamassassin uses a list of CCTLDS_WITH_LOTS_OF_OPEN_RELAYS, which, not suprisingly, includes ".za". With WBS's forced mail relaying, there will now be TWO Received: headers with a .za domain in the Received: chain. Score more for your email turning into spam.
Thirdly, another score for ROUND_THE_WORLD_RELAYING is done, with an additional weight, using the same TLD's with each instance of the TLD adding more score to the spamminess of your mail.
The more ".za" domains involved in sending your email, the higher the possible spam ranking. Not great if you're using a .com domain to do your business.
That's just patently false. I have just now scanned through all my email logs (which date back considerably), and I've *never* even hit the CCTLDS rule. And I don't relay .co.za email? Bah! All my CLUG email gets tagged as ROUND_THE_WORLD, but it hasn't had any detrimental effects there? That's the whole *point* of using a cumulative rating -- so that the median (ie., those lying close together in the middle) do not get distorted by one or two odd ones. It works, and it works well.
Now, you can rant all you want about heuristics and how people using them should die, etcetera, but I know of a great many organisations that make use of Spamassassin, because it works for them. In fact, it's one of the better projects out there.
I agree completely, and that's why I use it.
Please name them, so that we can shame them too. I know DataPro does filtering, but on non-DataPro inbound traffic to their colo only, to offer their customers reasonable protection. It does not affect their end-users' ability to talk to an SMTP server as they see fit.
I don't use an ISP that does. However, I know that this is standard operating procedure for major US and UK providers, which was the point I was trying to make. South Africa *is* becoming a haven for spammers (why do you think we're on the CCTLD list?) -- why don't you support a move to try and combat that somewhat? I'm not saying its perfect, but it IS a good hurdle that any spammer now needs to overcome.
Funny, a lot of people here seem to find it an issue. And they're the ones that are mostly a little more clued up than the average small business user.
You're talking about something that a small business guy that uses a US based Colo (because it's cheap) for his hosting and services cannot easily accomplish, without having to pay someone that CAN do it. Never mind the fact that his hosting provider might not be interested at all. I know of MANY small businesses that host their sites, and email abroad due to cost. MyADSL used to be hosted over there, for a long time. We're not talking about enterprises on iBurst that can easily "diversify their SMTP servers".
Huh? He said he has set up SPF before, so how would it be difficult to change it again? Does not compute. And we were talking about hosted boxes over which you have that kind of control, not some arb fly-by-night that is reliant on a hosting provider for all their infrastructure. You get what you pay for.
Don't know. How big a cluster does it take to not produce 7000ms response times?
I think you might be mistaken. Don't confuse degradation of service due to your wireless connection with their server infrastructure being bad. Having run mtr against mail-01.jhb.wbs.co.za for a while now (and obviously using the SAIX backbone, although I've verified it from UUNet as well) all the way from Cpae Town, I get consistent ping times of well under 50ms. If you want me to, I can check during the day that it isn't spurious, but it seems fairly stable to me at the moment.
Yes, and WBS has now made that decision on behalf of their users, instead of giving their users the option to communicate between domains using emails as large as they prefer, without the interference of a relay.
Wrong, this is exactly an issue about what a user can or cannot do with their bandwidth. WBS has decided that users can only send emails up to 15Megs in size. If that's not deciding what they can and cannot do with their bandwidth then I don't know what is.
I've never defended their way of doing it; I agree that a few days' notice isn't really the Right Thing(tm) to do. I was arguing for the practice in general.
The way to deal with RBL listings is to remove/disconnect the abusive users from their network, and to request a delisting. This is what prudent ISP's do. Prudent ISP's also read their abuse@ mail.
Certainly. However, you can't now suddenly argue for them to do one prudent thing, but not another.
There was no "should be tech savvy to circumvent our idiotic measures" clause in the WBS contracts. There's also the fact that people like regardtv, that monitors his clients' servers for availability, or diagnostic purposes can now not talk to their SMTP daemons. Must he now convert all 100 of his clients's firewalls so that he can monitor them on a different port?
Again, there are a *lot* of options here. If you feel that you have a business that considers unfiltered access to port 25 a priority, then iBurst / regular ISP access probably isn't for you. Get your own box, with which you *have* that control. And again, you get what you pay for. ISPs in the dialup market *are* more anal, simply because they provide a budget service to a high-maintenance market. Contrast this with a backbone/hosting provider that can charge premium rates for services that is generally self-maintaining.
No matter which way you swing this inso, it is a Bad Thing (tm).
Well, I'll agree to disagree on this one. The concept of forcing SMTP relaying has its place, and does definitely do more good than harm in those circumstances. The needs of the many outweighs those of the few.
Sign up with Google