Welcome to WebmasterWorld Guest from 54.145.118.24

Forum Moderators: ocean10000

Message Too Old, No Replies

iis setup help needed

spammers using our domain name as return address

     
11:32 pm on Jul 4, 2008 (gmt 0)

Junior Member

5+ Year Member

joined:Jan 25, 2008
posts:44
votes: 0


Some spammers have been sending thousands of spam using our domain name as return address. Obviously we get all the bounce backs. What is the latest on protecting yourself against this? Should we disable catch all account? Is this a good idea?
Most of return addresses are:
blabla@ourdomain.com
blabla2@ourdomain.com
blabla3@ourdomain.com
etc, etc.

Thank you in advance

11:33 pm on July 4, 2008 (gmt 0)

Junior Member

5+ Year Member

joined:Jan 25, 2008
posts:44
votes: 0


forgot to add, it's windows 2003 server, iis 6
11:34 pm on July 4, 2008 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member pageoneresults is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Apr 27, 2001
posts: 12171
votes: 60


Are they just "spoofing" the "From Address" or are they able to send out email from your domain? Two different things to discuss here.
11:39 pm on July 4, 2008 (gmt 0)

Junior Member

5+ Year Member

joined:Jan 25, 2008
posts:44
votes: 0


sorry, spoofing
11:42 pm on July 4, 2008 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member pageoneresults is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Apr 27, 2001
posts: 12171
votes: 60


Nothing you can really do other than educate your customers on how the From address can be spoofed by anyone.

As long as you have SPF in place and you have other bases covered like not allowing SMTP Relay, you should be fine. I say "should be" because email these days is best left for the Professionals.

11:44 pm on July 4, 2008 (gmt 0)

Junior Member

5+ Year Member

joined:Jan 25, 2008
posts:44
votes: 0


no, no spf has been setup, I guess that's a good start and I'll look into the smtp relay as well,
11:44 pm on July 4, 2008 (gmt 0)

Junior Member

5+ Year Member

joined:Jan 25, 2008
posts:44
votes: 0


where's my manners, thank you.
6:17 am on July 5, 2008 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:May 24, 2002
posts:894
votes: 0


You might also want to disable your catch all account.
It will save you from having to deal with all the bounce backs and genuine people wanting to contact you will use either your site forms or any address you gave them any way.
5:16 am on July 8, 2008 (gmt 0)

Preferred Member

10+ Year Member

joined:Mar 30, 2006
posts:399
votes: 0


Only way to stop is to remove catch all account, we had this issue and after removing catchall . the problem stopped
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members