- This topic is empty.
-
AuthorPosts
-
January 10, 2007 at 6:33 pm #721906
Anonymous
InactiveI have the same exact problem, I don’t think my site was hacked. It seems they’re spoofing my address. It will come back as sent through my domain.
If anyone has a way to stop this I would love to hear it.
thanks
January 10, 2007 at 6:53 pm #721914Anonymous
InactiveThis is common – as fonzi says, they have sent out spam emails which appear to come from your email domain.
I don’t think there’s anything you can do about it unfortunately, except perhaps set up a rule that removes ‘delivery failure notifications’ to a separate folder so they’re not so annoying.
Also, those messages will normally come back to randomcrap@yourdomain.com, i.e. [email protected]. So what I do is I have specific rules for the [email protected] that really exist (webmaster@, myname@, etc) and anything else is sent to a Suspected Spam folder.
It doesn’t solve the problem, but it makes it a lot easier to clean up.
January 10, 2007 at 7:08 pm #721918Anonymous
InactiveAre you guys running your own Email servers ??? If so, you want to disable “relaying”, which will prohibit spammers from using your Email server to relay their spam Email (with origination from your domain, by the way !).
If you don’t run your own mail server, and your host service does, you may want to talk to them about disabling “relay” on thei Email server.
January 10, 2007 at 7:11 pm #721920Anonymous
Inactivedhayman wrote:Are you guys running your own Email servers ??? If so, you want to disable “relaying”, which will prohibit spammers from using your Email server to relay their spam Email (with origination from your domain, by the way !).If you don’t run your own mail server, and your host service does, you may want to talk to them about disabling “relay” on thei Email server.
This is different dhayman. You don’t need to use my email server in order to send an email that appers to come from my domain.
What a spammer will do is find an unsecured email server – like you described – and then he can push mail through it with any From: address. They choose a real, legitimate domain because it makes the email look more authoritative and it also bypasses some spam filters. Also it means they don’t have to deal with the millions of failure notification emails that come back – they leave that to us to do!
So there’s really nothing you can do about it; even if your email server is 100% secure, any spammer can forge your address and send it through a different server, and then leave you to clean up.
Fortunately it should be nothing more than an annoyance – it’s so common that no-one will actually believe you sent the mail, so no flack comes back to you. Or at least it never has to me.
January 10, 2007 at 7:30 pm #721937Anonymous
Inactivehowardmoon wrote:This is common – as fonzi says, they have sent out spam emails which appear to come from your email domain.I don’t think there’s anything you can do about it unfortunately, except perhaps set up a rule that removes ‘delivery failure notifications’ to a separate folder so they’re not so annoying.
I’m getting them too. It could be the OTC stock spammer I’ve complained about in other posts. Did you happen to open any of the non-deliverables?
The spammer is trying to create a surge in an OTC stock price then dump it.
The spam emails contain a gif for an OTC stock and they change the gif resolution such that it can bypass many spam filters. The spam email also contains a bunch of unrelated text. I’ve found posts dating back to August. You can click full headers and examine the email IP addresses to see where it originated.
January 10, 2007 at 7:37 pm #721938Anonymous
Inactiveslotplayer wrote:I’m getting them too. It could be the OTC stock spammer I’ve complained about in other posts. Did you happen to open any of the non-deliverables?Yeah it’s the stock quote emails they’re sending.
January 11, 2007 at 1:29 am #722039
tcollickMemberI was getting this sort of spam for a while and what I noticed was the spam e-mail had a sent address of ‘[email protected]’ rather than any of my valid e-mail account. I changed my default e-mail address which receives all misspelt email from ‘[email protected]’ to ‘:blackhole:’ which solved this problem 100%. The only drawback is that you won’t get an e-mail if someone accidently types in the wrong e-mail address although I have never had a problem with this.
January 11, 2007 at 12:41 pm #722082Anonymous
Inactivelook at the message header and see if the mail is coming from your mail server, if so you need to fix asap, if not your getting spoofed and there is not much you can do.
-
AuthorPosts