Spam source using my address as source

Started by wkb21, Oct 29, 2007, 07:53:42

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

wkb21

Oct 29, 2007, 07:53:42
I (and presumably others) am receiving spam from a notorious Canadian site which is using my email address as source.  I cannot filter it because the content is a bitmap only, and the source is my own address.  How is this possible?  How can I stop it without filtering my own address or without changing my address?

Rik

#1
Oct 29, 2007, 10:00:45
Spoofing email addresses is quite a common technique. I assume you've done a full virus and malware sweep of your machine(s). If so, I'd suggest the best thing to do would be to talk to support for advice.

Have you looked at the headers, to see if the true source is visible?
Rik
--------------------

This post reflects my own views, opinions and experience, not those of IDNet.

wkb21

#2
Oct 29, 2007, 18:51:56
True source is totally opaque - but it refers out to a Canadian pharmaceuticals site selling the usual stuff.  No viruses or malware imported. 

Will consult support.

Conrad1

#3
Oct 29, 2007, 22:21:40
I am currently experiencing a similar problem on one of my domains.  I have done a little research into a possible solution.  Have a look at http://www.openspf.org/ - may be of some use for you?

Having an SPF record could help reduce the amount of spoofed e-mails being sent with your address as sender (and consequently reduce the amount of "bounced" e-mails you get back!).

Hope this helps - sory if it doesn't - I haven't really looked into it properly yet.

Mouseroo

#4
Oct 29, 2007, 22:58:21
You might also be interested in looking at www.ciphire.com

Exerpt from website: By default Ciphire Mail will add informational tags to incoming and outgoing emails. These tags allow you and others to verify how this email was sent or received.

I have used it in the past, and it's quite nice.  In fact, now that I've remembered it, I've just downloaded it again!
Andy
----------

Your ability to bang your head against reality in the hope that reality will crack first is impressive, but futile!

Adam

#5
Oct 30, 2007, 18:18:42
Quote from: Conrad1 on Oct 29, 2007, 22:21:40
I am currently experiencing a similar problem on one of my domains.  I have done a little research into a possible solution.  Have a look at http://www.openspf.org/ - may be of some use for you?

Having an SPF record could help reduce the amount of spoofed e-mails being sent with your address as sender (and consequently reduce the amount of "bounced" e-mails you get back!).

Hope this helps - sory if it doesn't - I haven't really looked into it properly yet.

It would really be up to IDNet to add a SPF record for the mail domain as it needs to be added in the zone file. It should help reduce email spoofing though, if done correctly.

If you use a desktop mail client it may be possible to apply filtering in the application, rather than at IDNet's end. Some mail applications allow for much greater flexability and spam control over IDNet's server side filtering.
Adam

wkb21

#6
Oct 31, 2007, 22:21:47
Thank you all for feedback.
Print
Go Up Pages1
User actions