Eamil from invalid users in own domains???

Kevin Spicer kevins at BMRB.CO.UK
Wed Jun 9 19:59:14 IST 2004


On Wed, 2004-06-09 at 19:39, Eric Sandquist wrote:
> Sorry 'bout the 'bug'...
>
> We already do pop-before-smtp for authentication...
>
> The problem is these spammers spoofing email from our domain to our
> domain...  ie. from a non-existant user in our domain to a real user in our
> domain.  They actually relay from somewhere else... because From:
> ourdomain.com is whitelisted, the mail from this ficticious user gets mark
> as such and goes through...    There ought to be a way to check this from
> against the internal user list when the email is labeled as from the local
> domain.
>
Can't you just whitelist from your IP block rather than the domain name?




BMRB International
http://www.bmrb.co.uk
+44 (0)20 8566 5000
_________________________________________________________________
This message (and any attachment) is intended only for the
recipient and may contain confidential and/or privileged
material.  If you have received this in error, please contact the
sender and delete this message immediately.  Disclosure, copying
or other action taken in respect of this email or in
reliance on it is prohibited.  BMRB International Limited
accepts no liability in relation to any personal emails, or
content of any email which does not directly relate to our
business.

-------------------------- MailScanner list ----------------------
To leave, send    leave mailscanner    to jiscmail at jiscmail.ac.uk
Before posting, please see the Most Asked Questions at
http://www.mailscanner.biz/maq/     and the archives at
http://www.jiscmail.ac.uk/lists/mailscanner.html



More information about the MailScanner mailing list