> >getting mail from people with my domain name that do not exist. How do I > >stop my domain from being spoofed. bogusmap? do i put in the > >mailserver.domain.com in bogusmap or the domain itself? > > you put your domains in from_senders_mybogus.map, but only if your ip's > sending to IMGate have matching PTR and A records, which is the same > requirement for from_senders_bogus.map. > > This does not stop all forgeries, but it does stop most forgeries. > > Eric suggestion is the best way, but as for him, not many people can do it > because they do have valid senders sending to imgate as @mydomains from > ip's that are not in mynetworks.
Yah, that is why I suggest warn_if_reject on this. For those that don't know, warn_if_reject causes the next check to not be a reject check. See, you will still get the spam because of the warn_if_reject. You will also get a log warning you can grep for. This is a very good thing when dealing with such a fundamental change. It lets you test the block on a live server without screwing up all your mail. --Eric
