[BNM] Spam mail

[Russell Beech]

Add an SPF record[1] to the DNS of her domain:

"SPF allows the owner of an Internet domain to use special format of DNS TXT
records to specify which machines are authorized to transmit e-mail for that
domain. For example, the owner of the example.org domain can designate which
machines are authorized to send e-mail whose e-mail address in the
Return-Path ends with @example.org." 

She'll probably come unstuck forwarding to and then replying from Hotmail
though?  In which case webmail for her domain could be the answer?

There's probably some more knowledgeable people on the list to pass comment
in this area.

[1] http://en.wikipedia.org/wiki/Sender_Policy_Framework

R.

-----Original Message-----
From: bnmlist-bounces at brightonnewmedia.org
[mailto:bnmlist-bounces at brightonnewmedia.org] On Behalf Of S Sparkie
Sent: 27 February 2007 14:22
To: Brighton New Media
Subject: [BNM] Spam mail

Hi BNM,

I've got the usual issue of spam with one of my clients. She is
getting approx 250 plus emails a day bounced back to her using various
email addresses at her domain as  she picks up all mail sent to this
domain.

Now I take it that I'm correct in thinking that this is because
someone is spamming using her account and they are faking the From:
address as from her domain, emails  are then sent and if the
recipient's mailbox is full or does not exist then these emails are
being blindly replied back to using the from address and ending up
back in her  inbox.

Now I know I can use email filters and spam checking within email
clients to filter these unwanted emails into specific folders but is
there anything else you can suggest or  do to stop this? My client has
been told that clients are unable to send genuine emails to her using
well formed and correct email addresses is this correct? Can it
happen? When away from her local PC she does forward all her emails to
a hotmail account so maybe hotmail is rejecting the genuine emails?

Also I did think that this would just go away but it has been constant
for at least 3 months now. I was under the impression that once the
mail server that the spammers  used detected a "spam attack" being
sent via them they would block it?

I'm pretty sure that she in not getting any form of "form injection"
going on, on the site itself. She does have a mailto: tag on the site
that has her email address in it which I  might change.

Basically she is worried that real clients are being stopped from
sending her genuine email?

Any help most appreciated.

Cheers
S
-- 

BNM Subscribe/Unsubscribe:
http://lists.wessexnetworks.com/cgi-bin/mailman/options/bnmlist/
BNM info/archives:
http://www.brightonnewmedia.org/

BNM archive search:
http://www.roddis.org/bnm/search.php

BNM powered by Wessex Networks:
http://www.wessexnetworks.com