On 9/11/2011 20:02, John Hardin wrote:
On Sun, 11 Sep 2011, René Berber wrote:
On 9/11/2011 3:47 PM, rutra80 wrote:
Hello, lately I receive spam which looks like coming from my domain,
sometimes it is spoofed like coming from accounts that don't exist, and
sometimes from the ones that really do. The only SA rule that it triggers is
Bayesian one, with nearly 100% probability - it assigns 3.5 points, but my
rejection limit is set to 4.5 and I'm not eager to lower it. What would be
the most elegant and technically correct way to get rid of the problem?
1. Require authentication.
2. SPF.
3. If your domain's mail will only ever originate from your MTA, then set
up your MTA to reject any mail having a From address in your domain unless
it comes from your trusted network(s).
4. If #3 is not feasible, validate apparently-local sender addresses and reject messages
with invalid sender addresses. This will reduce the number of messages that require more
costly processing.
--
Paul Russell, Senior Systems Administrator
OIT Messaging Services Team
University of Notre Dame
