Hi, On Thu, 22.04.2004 at 08:33:32 -0500, Chris Garrigues <[EMAIL PROTECTED]> wrote: > claims to be from <randomaddress>@mydom.ain. I *think* some spammer is > noticing other domains on the same name server and using them as the host in > the source address in order to get past more filters. If I could have his
that should be sort of easy once you don't care about junk IP traffic as spammers usually do: Go through your favourite list of email addresses and match them up according to DNS - then you find out which domains have their email delivered on which servers, and can craft them like that. Now we *would* like to prevent faked internal mail to be received on the outside, but I don't see a cheap solution. The expensive solution would be to hack that into your favourite spam filter software, as far as I can see. Best, --Toni++
