Spammer apparently is using [EMAIL PROTECTED] in the FROm field of the emails he is sending out. Domain is one of my customers virtual domain, spammer made up the username in the email address. Now I am getting burried by mail notifications returning to sender...obviously wrong person.
How do you people deal with this? Is there anything I can do? Email addresses in FROM field as we all know are fake when spammers use them. But if you don't do it if someone misspelled an email address that is legitimate and sent it to user they won't know it didn't make it.
I am at a loss what to do.
Any ideas?
Not much.. However you can publish SPF records in your DNS zones for that domain. This way at least the sites which check SPF will realize that it's a forgery right off. Admittedly not many sites do this currently, but more are doing it every day and every little bit doesn't hurt.
See http://spf.pobox.com/ They have a little web wizard which will create a DNS TXT record entry for you that you can copy-paste into your zonefile.
BEWARE, however, that SPF is a hotly contested technology that breaks forwarding in many cases and may not be the all-in-one spam savior that the lazy sysadmin is looking for. Just have a look over the mailing list archives for any MTA to see the range of opinions about SPF.
