Monday, 5. December 2005
PermaLink Christmas is coming
Yes, it's that time of year when people start sending out their annual email to everyone they know. This has caused us problems in the past and seems set to do so again.

Some time earlier today, a sender in Germany sent a seasonal message to a list of 47 recipients *. One of those is using the infamous Microsoft POP3 fetch. Another is a user here who contacted the helpdesk a short while later to ask why he had received the same email 19 times (so far). For those of you unfamiliar with how this goes, here's what happened.
  1. The original message hits a POP mailbox being used (very unwisely) by one of the 47 recipients.
  2. The POP fetch being used is the usual broken Microsoft one.
  3. On receiving the message, the POP fetch breaks as it can't handle a large number of recipients in the message "To" field.
  4. Instead of delivering a single copy to the only local recipient, the POP fetch does so and queues a fresh copy for every recipient including the local one.
  5. This fresh copy preserves none of the original "Received" headers and looks like a locally originated message.
  6. It is now sent back out and every recipient of the message gets a fresh copy - including the POP mailbox being used for the broken POP fetch.
  7. POP fetch kicks in again and ... [goto 1]

So, the first sample this festive season but I expect there'll be more.

If one of your users starts to complain about multiple delivery of a message and that message includes a large number of recipients in the "To" field, you can kill the problem locally ** by listing the email address of the original sender in the server config field "Deny messages from the following internet addresses/domains:".


* Yes, it only takes 47 recipients to trigger the bug (a buffer overrun in case you hadn't guessed)
** This doesn't fix the problem, it just masks it from your victim user.

Category: Dumb and Dumber
Technorati:

Comments :
None yet...
Unable to post a comment? Please read this for a possible explanation...
Add Manual Trackback
Please enter the details of the trackback post. Your trackback will not appear on the site until it has been verified. This won't be immediate, as trackbacks are validated on a scheduled basis. Be patient.











Search
Popular Categories
Blogs
Coffee and Cats
Computing Systems Fundamentals
DNSBLs
Domino Administration
Domino Whitelist
Dumb and Dumber
Flickr
IPv6
SMTP AUTH
Show n Tell
Software
Spam
Spam Statistics
T'Internet
Trunk Monkeys
Viruses and Worms
Wallace and Gromit
Whitelisting
Wii
Monthly Archive
2008
2008
2008
2008
2008
2008
Full Archive
Other stuff
Anti-Spam Tools
Misc Links
Land banking information
ClustrMaps
Locations of visitors to this page
Contact Me
email - Chris Linfoot
skypeme
Meta
Proudly powered by IBM Lotus Domino 8 Proudly powered by IBM Lotus Domino 8

Subscribe to articles Subscribe to articles feed

Subscribe to comments Subscribe to comments feed

ROR info ROR info


My Amazon wish list Wishlist


Wikio - Top Blogs - Technology
Like what I do?
Then please consider a donation to support the work of Research Autism.

Idea Jam
Planet Lotus
Dilbert