> On 9/17/2009 12:55 PM, wiskbr...@hotmail.com wrote:
>>> Don't confuse the envelope sender as logged by Postfix with
>>> the From: header displayed by your mail client.
>>
>> Thanks. Is their a way to ensure that these are the same? How can I ensure
>> that the From: header displayed by my mail clients are not allowed inbound
>> with the same domains as those I host?
>>
>
> Use SpamAssassin or similar content inspection.
> It's not unusual for legit mail to have different envelope
> sender and From: header - email lists rely on this.
>
> And mail with a From: header in your domain is not in itself a
> sure indicator of spam. That's why deeper inspection such as
> SpamAssassin is useful.
Yeah, I've got that running too, quite odd that this spammer somehow bypassed
it...
> Another issue is that sometimes mail arrives with a broken
> From: header. Under certain conditions postfix will add
> @yourdomain to these broken headers. This can cause confusion
> for your users.
> One thing that I've found useful to to set in postfix main.cf
> remote_header_rewrite_domain = domain.invalid
> so that mail with broken From: headers are clearly labeled as
> such. For more info on this, see:
> http://www.postfix.org/ADDRESS_REWRITING_README.html#william
Awesome! Thanks Noel, I'll give that a try.
.vp
