What is SPF?
Bhavesh
On Jan 28, 2004, at 5:17 PM, Benjamin J. Stassart wrote:
Date: Wed, 28 Jan 2004 16:47:34 -0600 From: Bhavesh K.Patel <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: odd mails being sent from my account
Hi everyone,
I don't think this is related to TMDA, but I thought I'd run it by you just in case it is. I have been getting a lot of "Mail Undeliverable" messages that are bouncing back to me. I don't really know the source of this. I use MacOS X and I wouldn't expect that I have a virus.
Here are some of the mails, any ideas??
Received: from veshman.com (s69-112.wt.luc.edu [147.126.69.112]) by rly-xh06.mx.aol.com (v97.10) with ESMTP id
Does anyone know what is going on??
Unless you send out mail from luc.edu it looks like a spammer is using your domain and e-mail address to send out spam.
I have heard that AOL has started looking at SPF records, so you can set
those up to stop AOL at least thinking the mail is from you. Until SPF
catches on there is no way to stop this. It really stinks when a spammer
uses one's domain, but I haven't had any luck dealing with this when I've
tried.
I recommend setting up SPF: http://spf.pobox.com/. The more people who
hop on that bandwagon the more likely it is to succeed. You can test your
SPF records and list your domain if you wish at:
http://www.infinitepenguins.net/SPF/check.php
http://www.infinitepenguins.net/SPF/register.php
There are currently around 5000 domains that have listed themselves on
this page as supporting SPF. So who knows what the actual number is.
What is still lacking is support in MTAs. Apparently, the next version of
SpamAssassin will check SPF though.
A company I consulted for a while ago was targeted in this way and we
tried to contact the FBI as we had tracked down the IPs of where a bunch
of the fraudulent spam came from, but they expressed no interest. Most of
the IPs were elementary schools in Asia that had probably been hacked. I
think too much of this is going on for them to work on each case. They
seem to be most interested if there was a heavy financial loss.
The FTC also has some authority in this area, but their forms also ask how
much money you have lost. They also seem to prioritize on financial loss.
Benjamin J. Stassart ------------------------------------------------+ A great many people think they are thinking | when they are merely rearranging their | prejudices | _____________________________________________ tmda-users mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-users
_____________________________________________ tmda-users mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-users
