Will this keep me from getting unplugged? (AUP)
I'm going to setup free web based email for the users on my site. From my understanding if someone spams FROM the web based email and someone reports it and the site is blacklisted, EV1 will unplug my server and format it or make me remove the offending domain.
I have another server that I'm going to use for the web based email. How can I set it up so that if someone does spam, that the black listed IP is the web based email server rather than my main server which holds my web site on (I cannot have it unplugged no matter what).
I thought about setting up mail.mydomain.com and have A record for the ip of the server im using for the web based email. But then have the actual emails username@mydomain.com Would this work?
If so, if I got blacklisted this way, would it blacklist mail.mydomain.com and the ip it resolves to, or mydomain.com ?
Here is how its going to be setup (ofcourse i masked the ip's arp's, hostnames):
Server A: 192.168.1.1 mydomain.com
This server is at Ev1. This server is where my main site is being hosted (mydomain.com).
Server B: 192.168.1.2 mailman.mydomain.com
This server is at another datacenter. This is the server that will be running the web based mail for mydomain.com
All emails sent from the web based email will be sent to the mail server at 192.168.1.2 and it will "forge" or spoof the email as: username@mydomain.com. I went ahead and set it all up to test this theory. I sent an email from the web based email to my mailbox. Here is what the headers look like from that email (I edited them so they hide my ip's but match the ones above):
Return-Path: <myname@mydomain.com>
Received: from mail.yahoo.com (root@localhost)
by yahoo.com (8.11.6/8.11.6) with ESMTP id hBP40Ur23627
for <myusername@yahoo.com>; Wed, 24 Dec 2003 22:00:30 -0600
X-ClientAddr: 192.168.1.2
Received: from mailman.mydomain.com (192.168.1.2.reverse.ip-arpa.com [192.168.1.2] (may be forged))
HOW can my site at EV1 be unplugged if this email was to be blacklisted? It has NO ip address of EV1's servers within it. The only thing that would have EV1's ip range is if the blacklist did a reverse DNS lookup of mydomain.com (found in the return-path).
