Quoting "Paul G. Allen" <[EMAIL PROTECTED]>:
I'm used to, on occasion, getting a failed delivery message from an e-mail address I never sent an e-mail to. They're obviously spam with a spoofed header, and are returned to me by a mail server/spam filter that is improperly configured. Recently I've been getting several per day from all over the place.
Kind of surprised no one has mentioned this.. but you're describing something that basically has its own term: http://en.wikipedia.org/wiki/Joe_job Or someone mentioned it and I misssed it.
I've had spurts where I'll get a bunch like this too.. I think spammers harvest domains from usenet (going back) or web pages and rotate through randomly using a domain for the From field... and periodically you'll get "lucky" and be the one used for a chunk and get a slew of bounces vs the usual trickle.
The real clue that it's from forged headers is the from that was used is usually nothing like any address I actually have locally. I do filter * into a spam holder so I can try to catch when this happens though.
-- Mike Marion-Unix/Linux Admin-http://www.miguelito.org AJ - "Ye GODS! NT crashed the microwave!" Pitr - " Hmmm. Am thinkink we should put Elder Sign seal on microwave now. Leave alone." -- User Friendly 2/28/1999. -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
