On Sun, 2007-05-13 at 16:19 +0200, Giampaolo Tomassoni wrote: > > -----Messaggio originale----- > > Da: Gregory P. Ennis [mailto:[EMAIL PROTECTED] > > > > On Sun, 2007-05-13 at 15:16 +0200, Giampaolo Tomassoni wrote: > > > > -----Messaggio originale----- > > > > Da: Gregory P. Ennis [mailto:[EMAIL PROTECTED] > > > > > > > > Everyone, > > > > > > > > I have used spamassassin on our mail servers now for over 4 years > > and > > > > have nothing but high praise for what it has done for us. However, > > > > recently we have been hit by bounced e-mail that is related to the > > > > inappropriate use of some of our e-mail addresses. > > > > > > > > It appears that some spam artists with ip addresses that apparently > > > > originate in Germany use a bogus names identified with one of our > > e- > > > > mail > > > > addresses to send solicitations for pharmaceuticals to various e- > > mail > > > > addresses. Some of these end up being undeliverable and then > > bounce > > > > back to us. > > > > > > > > Can anyone direct me to software or an agency that help me fight > > the > > > > inappropriate use of our e-mail addresses in their spam. > > > > > > What about SPF or DKIM? They are fully supported by SA, too. > > > > > > Also, report the bounces as spam: MTA's should avoid to produce > > bounce > > > messages when a destinating mailbox doesn't exist. They should give a > > 550 > > > error code, instead. > > > > > > Giampaolo > > > > > > > > Thanks for your suggestions. I upgraded to 3.20 yesterday via cpan, > > but > > when I tried to run DKIM I received some configuration errors. I have > > not debugged it yet but believe it was related to configuration > > differences between a cpan installation and what was normally on Fedora > > Core 4. I am planning on upgrading the os to CentOS 5.0 which already > > has spamassassin 3.2 packaged. > > > > I am not familiar with SPF? > > To you, it is not that important to configure SPF in SA, but instead to > configure your DNZ zone such that OTHER MTAs may detect the spam source as > not really being from you. > > By implementing SPF, some MTAs and most SA installations will refuse/mark as > spam the spam faking you mail addresses, thereby spammers will be pushed to > not use any e-mail from your domain in their faked From:. > > Have a look at http://www.openspf.org/Specifications in order to learn how > to setup you DNS zone for SPF. > > Giampaolo > > > SPF seems very interesting. Does spamAssassin automatically use an SPF record if it exists? Do I set up an SPF record with whoever manages my MX DNS record? I will need to study the SPF material in depth... sorry if my questions are beginner!!!
Thanks for your help!!!! Greg
