About a year ago I started having a real influx of spam mail. I posted here at the time that someone had decided to use hundreds of email addresses all starting with a and my domain.
e.g. email messages sent to email@example.com, firstname.lastname@example.org, email@example.com etc.
This was a bit of an annoyance at first as each morning the email client would download the messages and move them into the junk folder.
The solution to stop that was to turn off the catch all addressing. I was using catch all so obviously all messages were being downloaded.
Changing to explicit names (sales, information, marketing etc.) solved that mailbox influx but didn't stop the messages arriving at the server.
Knock on Effect
I thought that solution would be a double edged sword and that it would eventually stop the spam messages from reaching the server.
At the time I had assumed the spammers were using some tricks to determine if the email addresses were genuine or not. If there was no bounce from the spam email then the email adress must be genuine!
So turning off catch all meant that all those firstname.lastname@example.org would be rejected and that the spammers would receive thousands of bounces and then eventually remove the email@example.com from their list.
But it never happened. I'm still getting those email address - today 58,000 of them!
Maybe I got it all wrong
58,000 emails were rejected today but the average is around 35,000. That works out at nearly a quarter of a million rejects a week, 12 million a year.
That's a crazy situation to be in so clearly I made a mistake somewhere. Maybe the server is relaying, maybe I left something open somewhere.
Why do some spammers consider it worthwhile associating my server with a quarter of a million spam messages each week?
[edited by: Frank_Rizzo at 7:06 pm (utc) on Sep. 7, 2006]
[edited by: trillianjedi at 2:49 pm (utc) on Sep. 10, 2006]
[edit reason] Please repost with the specifics if needed. Ta! [/edit]