On 4/23/19 11:39 AM, Paul wrote:
Yes I agree with Kevin here, the best solution to this problem is an spf record
set to reject mail from any ip that’s not in your allowed list of ips for your
domain. Forging a from address is very easy and is one of the main purposes of
why spf was created.
There is no need to go to those lengths - assuming that all your own
email is being submitted over port 587, include -o
receive_override_options=no_header_body_checks in the master.cf entry
for submission and use a PCRE header checks file for port 25.
/^From:.*\@example\.com/ REJECT
Sent from my iPhone
On Apr 23, 2019, at 11:26 AM, Kevin A. McGrail <kmcgr...@pccc.com> wrote:
On 4/23/2019 10:02 AM, Ian Jones wrote:
I am getting emails like the one below, in which the header from is my
own address.
Ian, are you using Apache SpamAssassin or something in the mix? I've
published a lot of rules for these sexploitation scams in KAM.cf and
with an SPF record, you really shouldn't get these in your inbox.
Regards,
KAM
--
John
PGP Public Key: 412934AC
