OT: Filtering OutBound SPAM

Scott Silva ssilva at sgvwater.com
Wed Feb 4 18:48:38 GMT 2009


on 2-4-2009 7:21 AM Eduardo Casarero spake the following:
> Hi, i've a rare scenario with one of my customers and i though that
> someone from here could give me some fresh(?) ideas.
> 
> My client has it's own MTA (wich i don't manage, neither have access to
> logs, etc) and it sends all outbound traffic to my server that has
> (MScanner, SA, clamav, dcc, pyzor, razor, some custom rules, etc).
> 
> The problem i've right now is that (i assume) some malware stole valid
> user/passwords to authenticate in the smtp server of my client, so tons
> of spam are trying to get out to internet through my server.
> 
> Althogh all anti-spam stuff seems to work, i need some new
> countermeasures to stop this at MailScanner stage (i cant do anything at
> MTA level because everything comes from the same ip).
> 
> Any idea?
> 
> something like my own checksum repository, or url blacklist, or header
> authentication matching, etc.
> 
> Any help would be appreciated.
> 
> Eduardo.
> 
Sometimes you will have to play hardball with customers. They will balk at
first, but if you offer your help to trackdown what is happening, even for
free, you will both benefit from it. Because if you miss something, you will
get blacklisted, not him.
The customer will appreciate the free help, and either give you more business,
or refer you yo his peers.



-- 
MailScanner is like deodorant...
You hope everybody uses it, and
you notice quickly if they don't!!!!

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20090204/1debc709/signature.bin


More information about the MailScanner mailing list