Hi all, I have problem with spam that pretending me ( using my account email ) to send spam (Viagra etc ) to my self,
I have tested to http://verify.abuse.net/cgi-bin/relaytest , http://www.spamhelp.org/shopenrelay/shopenrelaytest.php and http://www.antispam-ufrj.pads.ufrj.br/cgi-bin/test-relay.cgi?host_to_test=20 3.80.8.42 result was my mail server is not open relay. Here is one of header email that spam pretending as my self to send email to me : Received: from smtp.satnetcom.com ([127.0.0.1]) by localhost (smtp.satnetcom.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nYW-uhh-ygdz for <ma...@satnetcom.com>; Fri, 12 Dec 2008 13:04:31 +0800 (CIT) Received: from amc.bn.to (unknown [85.132.106.26]) by smtp.satnetcom.com (Postfix) with SMTP id 2EB91F754C for <ma...@satnetcom.com>; Fri, 12 Dec 2008 13:04:25 +0800 (CIT) To: <ma...@satnetcom.com> Subject: Your order From: <ma...@satnetcom.com> And I tested also to few of my friend mail server ( by telnet ) and able send email to him from my network This is example one of them : SENYIUR# telnet in-mta4.telkom.co.id 25 Trying 203.130.196.199... Connected to in-mta4.telkom.co.id. Escape character is '^]'. 220-in-mta4.telkom.co.id ESMTP Fri, 12 Dec 2008 16:55:28 +0700. 220 UBE, porn, and abusive content not allowed. ehlo test.com 250-in-mta4.telkom.co.id Hello test.com [203.80.11.166] 250-SIZE 52428800 250-PIPELINING 250-STARTTLS 250 HELP mail from:r...@telkom.co.id 250 OK rcpt to:r...@telkom.co.id 250 Accepted data 354 Enter message, ending with "." on a line by itself pak test yah... emailnya.. ehehehe . 250 OK id=1LB4kh-0001Kp-E8 quit 221 in-mta4.telkom.co.id closing connection And also I tested to mail server of one from this member milis and it was sent ( I do apologize that I dare to test it ) . My question is, is there any way to stop this problem ? one of method that I know is SPF but consequence is we have to Use smtp auth (sasl) to use it if we are not at our network. Please advise from you all if there is any way to stop this. Thank you
