Information about Open Mail Relay

An open mail relay is an SMTP (e-mail) server configured in such a way that it allows anyone on the Internet to relay (i.e. send) e-mail through it.

History and technology

Until the 1990s this was the normal configuration for a mail server and was often the default on UNIX systems at installation. This was due, in part, to the traditional method in which e-mail (through and beyond the Internet) was passed from computer to computer via modems on telephone lines, often never touching the small Internet of the time. It was cheaper and simpler for e-mail to be passed from computer to computer until it reached its destination than to connect directly to the target computer (e.g. via modem) and log in to transfer the mail. For many early networks, such as UUCPNET, FidoNet and BITNET, lists of machines that were open relays were a core part of those networks. Filtering and speed of e-mail delivery were not priorities at that time and in any case the government and educational servers with which the Internet was started were covered by a federal edict forbidding the transfer of commercial messages.

Nowadays, e-mail transfer by "relaying," or pass-along methods, is almost forgotten. Backbone networks and Internet switches make it cost effective and expeditious for end-user PCs or even cellphones to send mail directly to the target host, without need for relaying through a "middleman" site. The underlying communication methods of the Internet already provide end-to-end connectivity via a pass-along method.

Abuse by spammers

In the mid-1990s, with the rise in popularity (and commercial adoption) of the Internet, it quickly attracted mass-marketers, in this domain known as spammers. As spam soon became widely unpopular, especially among e-mail server administrators who had to deal with the increased unsolicited traffic, spammers resorted to re-routing their e-mail through third party e-mail servers to avoid detection. After this practice became widespread, the practice of operating an open relay e-mail server came to be frowned upon among the majority of Internet server administrators and other prominent users, many of whom were veterans of the Internet's non-commercial era.

Anti-spam efforts against open relays

Many ISPs use DNSBLs (DNS-based Blocking Lists) to disallow mail from open relays. Once a mail server is detected or reported that allows third parties to send mail through them, they will be added to one or more such lists, and other e-mail servers using those lists will reject any mail coming from those sites.

This trend reduced the percentage of mail senders that were open relays from over 90% down to well under 1% over several years. This led to spammers adopting other techniques, such as the use of botnets of zombie computers to send spam. Although open relays are no longer widely used to send spam, many sites continue to refuse mail traffic from them.

One consequence of the new unacceptability of open relays was an inconvenience for some end users and certain internet service providers. To allow customers to use their e-mail addresses at Internet locations other than the company's systems (such as at school or work), many mail sites explicitly allowed open relaying so that customers could read and send e-mail via the ISP from any location. Once open relay became unacceptable due to abuse (and unusable due to blocking of open relays) ISPs and other sites had to adopt new protocols to allow remote users to send mail. These include smart hosts, SMTP-AUTH, POP before SMTP, and the use of virtual private networks (VPNs).

The Can Spam Act of 2003 makes it illegal to send spam through an open relay, but makes no provision regarding sending personal e-mail through them or regarding their operation.

Modern-day proponents

The most famous open mail relay operating today is probably that of John Gilmore, who argues that running an open relay is a free speech issue. His server is included on many open relay blacklists (many of which are generated by "automatic detection", that is, by anti-spam blacklisters sending an (unsolicited) test e-mail to other servers to see if they will be relayed). He has never sent any spam personally, yet these measures cause much of his outgoing e-mail to be blocked. Along with his further deliberate configuration of the server, his open relay enables people to send e-mail without their IP address being directly visible to the recipient and thereby send e-mail anonymously.

Gilmore contends he has a right to configure his computer however he pleases, and others have the right to configure their computers to ignore him. However, since open-relay blacklisting is most commonly done at the ISP level, many end users have this decision made for them without their explicit request. Many ISPs have been unwilling to remove the blacklists that prevent his e-mails from reaching recipients on the ISP's network or implement any other method (such as a whitelist) to allow his e-mail through. As a result, he is unable to communicate by e-mail with many of his friends and business partners.

External links

• DSBL.org – Distributed Sender Blackhole List
• SpamHelp – SMTP open relay test
• How to block e-mail relaying – Advice for UNIX administrators