Re: FN-FORUM: email spoofing best practice

date posted 19th January 2007 13:34

> Someone's spoofing my domain to send spam - my question is, what's the
> best
> policy to try and avoid being blacklisted or whatever?

Blacklists tend to contain server IP addresses, rather than From:
addresses, as these are obviously easy to fake. I don't think you'll get
blacklisted.

> The two things I'm
> considering are setting unknown recipients to 'black hole' or ':fail: no
> such address here' in cPanel.

I'd set unknown recipients to be unknown: sendmail (or whatever) will
refuse to accept delivery of the message, and the silly software at the
other end will get told that the address doesn't exist. If you black-hole
then the other end will assume that the address does exist, and you'll
continue to receive mail for it.

SPF is the proper solution, and more and more people are using it. It
seems a default SpamAssassin installation now uses SPF, and big players
like hotmail certainly do.

Anthony
--
www.fonant.com - Quality web sites