Method and apparatus for filtering junk email
First Claim
1. A system for detecting and selectively preventing reception of an electronic message to a local message transfer agent (MTA), the electronic message having an address identifying a sender and transferred over a connection from a remote host, the system comprising:
- a dialup filter determining whether the connection is a dialup connection and, if the connection is a dialup connection, terminating the connection;
a relay filter determining whether the remote host is an open relay and, if the remote host is an open relay, terminating the connection; and
, a user filter verifying whether the sender of the electronic message is authorized and, if the sender of the electronic message is not authorized, terminating the connection;
wherein, said system establishes communication over the connection between said remote host and the local MTA if said system determines that the connection is not a dialup connection, said relay filter determines that the remote host is not an open relay and said user filter verifies the sender as authorized.
1 Assignment
0 Petitions
Accused Products
Abstract
An Active Filtering proxy filters electronic junk mail (also known as spam, bulk mail, or advertising) received at a Message Transfer Agent from remote Internet hosts using the Simple Mail Transfer Protocol (SMTP). The proxy actively probes remote hosts that attempt to send mail to the protected mail server in order to identify dialup PCs, open relays, and forged email. The system provides multiple layers of defense including: connect-time filtering based on IP address, identification of dialup PCs attempting to send mail, testing for permissive (open) relays, testing for validity of the sender'"'"'s address, and message header filtering. A sender'"'"'s message must successfully pass through all relevant layers, or it is rejected and logged. Subsequent filters feed IP addresses back to the IP filtering mechanism, so subsequent mail from the same host can be easily blocked.
841 Citations
68 Claims
-
1. A system for detecting and selectively preventing reception of an electronic message to a local message transfer agent (MTA), the electronic message having an address identifying a sender and transferred over a connection from a remote host, the system comprising:
-
a dialup filter determining whether the connection is a dialup connection and, if the connection is a dialup connection, terminating the connection;
a relay filter determining whether the remote host is an open relay and, if the remote host is an open relay, terminating the connection; and
,a user filter verifying whether the sender of the electronic message is authorized and, if the sender of the electronic message is not authorized, terminating the connection;
wherein, said system establishes communication over the connection between said remote host and the local MTA if said system determines that the connection is not a dialup connection, said relay filter determines that the remote host is not an open relay and said user filter verifies the sender as authorized. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. An article of manufacture for detecting and selectively preventing reception of an electronic message by a local host having a local message transfer agent (MTA), the electronic message transferred over a connection from a remote host, the article of manufacture comprising a computer-readable medium having stored thereon instructions which, when performed by a processor, cause the processor to execute the steps comprising the steps of:
-
determining whether the connection is a dialup connection;
terminating the connection to the remote host in response to determining that the connection was established by a dialup connection; and
,forwarding the electronic message to the local host in response to determining that the connection was not established by a dialup connection. - View Dependent Claims (30, 31, 32)
-
- 33. A proxy filter comprising an input port for receiving an electronic message on a connection from a remote host, a dialup filter determining whether the connection is a dialup connection and terminating the connection if the connection is determined to be a dialup connection, and an output port forwarding the electronic message received over the connection to a local host if the connection is determined to not be a dialup connection.
- 46. A proxy filter comprising an input port for receiving an electronic message over a connection from a remote host, a relay filter determining whether the remote host permits relaying of electronic messages and terminating the connection if the remote host permits relaying of electronic messages, and an output port forwarding the electronic message received over the connection to a local host if the remote host does not permit relaying of electronic messages.
- 52. A proxy filter comprising an input port for receiving an electronic message on a connection from a remote host, the electronic message having an address identifying a sender, a user filter determining whether the sender of the incoming message is recognized by a mailhost that is configured for the sender'"'"'s address and an output port for forwarding the electronic message received on the connection to the local host if the electronic message is authorized by the local host.
-
55. An article of manufacture for detecting and selectively preventing reception of an electronic message by a local host having a local message transfer agent (MTA), the electronic message transferred over a connection from a remote host, the article of manufacture comprising a computer-readable medium having stored thereon instructions which, when performed by a processor, cause the processor to execute the steps comprising the steps of:
-
determining whether the remote host is an open relay;
terminating the connection to the remote host in response to determining that the remote host is an open relay; and
,forwarding the electronic message to the local host in response to determining that the remote host is not an open relay. - View Dependent Claims (56, 57, 58, 59)
-
-
60. A method for detecting and selectively preventing reception of an electronic message transferred over a connection from a remote host by a local host having a local message transfer agent (MTA), the method comprising:
-
determining whether the connection was established by a dialup connection;
terminating the connection to the remote host in response to determining that the connection was established by a dialup connection; and
,forwarding the electronic message to the local host in response to determining that the connection was not established by a dialup connection. - View Dependent Claims (61, 62, 63)
-
-
64. A method for detecting and selectively preventing reception of an electronic message transferred over a connection from a remote host by a local host having a local message transfer agent (MTA), the method comprising:
-
determining whether the remote host is an open relay;
terminating the connection to the remote host in response to determining that the remote host is an open relay; and
,forwarding the electronic message to the local host in response to determining that the remote host is not an open relay. - View Dependent Claims (65, 66, 67, 68)
-
Specification