On Friday 22 August 2008 12:45 pm, mouss wrote: > Rob McEwen wrote: > > [EMAIL PROTECTED] wrote: > >> How can I tackle spam that came from my own e-mail address that I did > >> not send. Any info on how to prevent this will be greatly appreciated. > > > > I'm not a big fan of Sender Policy Framework (SPF). But if/when > > something like this happens to me or a client, I find it helps to set a > > very strict SFP record saying that mail from that domain should *only* > > come from your main official mail server. That way, recipients of such > > spam will have more tools available for blocking such messages. > > He can setup a rule to add some points if the From header contains his > domain except if the message "is ALL_TRUSTED". The details depend on his > mail flow architecture. > Here are a few rules that I got somewhere a long time ago. I'm sure the author if they're around will remind me who they are:
header RM_t_bobbf ToCc =~ /[EMAIL PROTECTED]/ # 98%+ spam describe RM_t_bobbf Definate spam destination email address score RM_t_bobbf 0.3 header RM_t_bobbf2 From =~ /[EMAIL PROTECTED]/i describe RM_t_bobbf2 Definately not from me score RM_t_bobbf2 0.3 -- Chris KeyID 0xE372A7DA98E6705C
pgp8fW4nZxGaM.pgp
Description: PGP signature
