On Sun, 2011-07-17 at 22:37 -0400, Stephen Harris wrote: > On Sun, Jul 17, 2011 at 09:07:38PM -0500, Les Mikesell wrote: > > There is no requirement for the greeting name to match any IP, and isn't likely > RFC2821 says: > - The domain name given in the EHLO command MUST BE either a primary > host name (a domain name that resolves to an A RR) or, if the host > has no name, an address literal as described in section 4.1.1.1. > > So, pretty much, HELO or EHLO greeting _must_ match to an IP. > > (RFC821 actually wanted the HELO to match the connecting host, but > 2821 just says it must be an A record or an address literal). Thank you Stephen. This is most useful. I have just received spam about an enlargement to part of the male body, sent to a special email address I created solely to see a Murdock/News International newspaper on-line:- exclusivepreview.timesonline.co.uk at xxxxxx It seems spammers have successfully hacked Rupert Murdock's London Times newspaper and copied hundreds of thousands of email addresses or has a member of staff sold the email addresses to spammers to make some money? To combat the menace of SPAM lazy mail administrators must act responsibly and end their inexcusable attitude that results in their mail servers emulating spammers by using false identities in their HELO/EHLO. The greater the distinction between a spammer's mail server and a genuine mail server, the easier it becomes to block spam. -- With best regards, Paul. England, EU.