Home page logo

nanog logo nanog mailing list archives

Re: [v6z] Re: Yahoo! Mail Issue
From: Scott Howard <scott () doc net au>
Date: Sat, 16 Apr 2011 14:09:46 -0700

On Tue, Apr 12, 2011 at 2:22 AM, Nathanael C. Cariaga <
nccariaga () stluke com ph> wrote:

ps.  I'm just wondering why yahoo doesn't inform their users that the email
that they sent was blocked because of their servers were listed in a
blocklist (inspite that the server is able to return a correct reject code

Because 550 is NOT a valid response code at that stage in the conversation.
According to the RFC, the only two valid responses to an initial connection
are a 220 or a 554.

Even then, RFC 2821 doesn't make it clear if a 554 on initial connection
should be considered a fatal error at the message level, and as a result
most mail servers will consider it a temporary failure and will re-try to
send the message multiple times even after getting a 554 (and especially
after getting an invalid 550).

As someone else has already pointed out, the solution is to return the 5xx
response after the rcpt to, not at the initial connection.

On 4/12/2011 3:33 PM, Matthew Petach wrote:

-bash-3.2$ telnet qc.stluke.com.ph 25
Connected to qc.stluke.com.ph.
Escape character is '^]'.
550 Blacklisted: Blocked - seehttp://

Connection closed by foreign host.

Closing the connection immediately after sending the 5xx is also not RFC
compliant. You "MUST" give the client the opportunity to close down the
connection with a quit command.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]