On 13/08/18 21:19, @lbutlr wrote: > On 12 Aug 2018, at 17:29, Stuart Longland <stua...@longlandclan.id.au> wrote: >> We have a problem where some smart-arse spammers/phishers are spoofing >> the From address, specifying our domain as their from address. In one >> case, the person in question uses my personal address in the From, To >> and Return-Path. In others, they pretend to be a scanner sending a >> supposedly "scanned document". > > Don’t accept mail from local users coming from a foreign server?
The thing is, define "local". From the border router's perspective (the host that *actually* receives the email from outside), all users are remote as all it does is some spam filtering, then forwards it to the internal server. The only accounts that are actually local there are aliases for Mailman. -- Stuart Longland (aka Redhatter, VK4MSL) I haven't lost my mind... ...it's backed up on a tape somewhere.
