Assuming you own/manage your infrastructure it should be straight-forward.
Create SFP records for your domain & SMTP server, set them to either soft or
hard fail mode.
If you can, also set up DKIM signing of your outgoing mail.
Then create rules that looks for your from address in a message and a meta
which says "if from me & DKIM-fail/SPF-fail hit it hard"
If you can work with the SPF hard fail you will also help to improve your net
reputation as spammers will have a harder time trying to "Joe Job" you.
On Fri, 14 Jul 2023, Thomas Cameron wrote:
All -
I am suddenly getting hammered by a BUNCH of spam that appears to be from me.
It scores low, and even though I keep feeding it to Bayes, it's still not
hitting the threshold to be marked as spam.
When I check the headers, it's coming from multiple random email servers, but
many appear to originate from hotmail/outlook.com. So from outlook.com,
through some unsecured email server, then to my server.
I'm trying to figure out how to block this stuff. Something like "if it
appears to come from me, but it's not actually coming from my email server,"
block it. I don't necessarily think this is a job for SA, but if there's a
rule I can tweak or a setting I can change, I'm all ears.
Thanks,
Thomas
--
Dave Funk University of Iowa
<dbfunk (at) engineering.uiowa.edu> College of Engineering
319/335-5751 FAX: 319/384-0549 1256 Seamans Center, 103 S Capitol St.
Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527
#include <std_disclaimer.h>
Better is not better, 'standard' is better. B{
