[dspillett]

> find me in the RFC where it is stated that blocking residential ips is ok

Is there one that actually states it isn't OK, that I'm unaware of?

It perhaps goes against the spirit of the RFCs and other documentation written at the time, but that is understandable because a lot of that stuff was written from the standpoint of being able to trust people on the Internet, including that they fully understand and have properly secured the hosts under their purview…

I send mail from home just fine, though my connection is through an ISP that is generally identified as offering commercial accounts (AAISP). You do have to make sure that you have SPF and DKIM configured but that is the case elsewhere too.

My machines see quite a lot of activity (SSH login attempts, attempts at brute force logins & scans for known vulnerability in old versions of HTTP(S) hosted software, and more, not just attempts to send junk mail) from what appears to be compromised machines on residential connections.