OT: Filtering OutBound SPAM
ecasarero at gmail.com
Wed Feb 4 19:28:54 GMT 2009
2009/2/4 Scott Silva <ssilva at sgvwater.com>
> on 2-4-2009 7:21 AM Eduardo Casarero spake the following:
> > Hi, i've a rare scenario with one of my customers and i though that
> > someone from here could give me some fresh(?) ideas.
> > My client has it's own MTA (wich i don't manage, neither have access to
> > logs, etc) and it sends all outbound traffic to my server that has
> > (MScanner, SA, clamav, dcc, pyzor, razor, some custom rules, etc).
> > The problem i've right now is that (i assume) some malware stole valid
> > user/passwords to authenticate in the smtp server of my client, so tons
> > of spam are trying to get out to internet through my server.
> > Althogh all anti-spam stuff seems to work, i need some new
> > countermeasures to stop this at MailScanner stage (i cant do anything at
> > MTA level because everything comes from the same ip).
> > Any idea?
> > something like my own checksum repository, or url blacklist, or header
> > authentication matching, etc.
> > Any help would be appreciated.
> > Eduardo.
> Sometimes you will have to play hardball with customers. They will balk at
> first, but if you offer your help to trackdown what is happening, even for
> free, you will both benefit from it. Because if you miss something, you
> get blacklisted, not him.
> The customer will appreciate the free help, and either give you more
> or refer you yo his peers.
God knows i've tried that way. but they just don't want it.
> MailScanner is like deodorant...
> You hope everybody uses it, and
> you notice quickly if they don't!!!!
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> Before posting, read http://wiki.mailscanner.info/posting
> Support MailScanner development - buy the book off the website!
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the MailScanner