Re: Inbound email attacks going to whole of GAL
From: Kirill S. Palagin (kpalagin_at_nomail.phxint.please.ru)
Date: 05/05/04
- Next message: Richard Roddy [MSFT]: "RE: External Incoming BCC/Distribution Lists"
- Previous message: Kirill S. Palagin: "Re: Restoring a folder in an inbox from Exchange 2003"
- In reply to: Mark Apolony: "Inbound email attacks going to whole of GAL"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 05 May 2004 15:13:21 +0400
Do you have distribution list for all your mailboxes? It's address may have leaked and they are putting it in BCC field.
Mark Apolony wrote:
> I am running Exchange 2003 on WServer 2003. We are receiving email attacks where a message is delivered to every member of the GAL, yet the from & to address are not valid. ie. the from address has shown both internal and external looking addresses, and the to address will be something like you@domain.com.au or something similar which is not valid on our system.
>
> I know we are all fighting spam, spoofing, viruses and worms, but has anyone seen this sort of behaviour before? I am concerned that something is coming in the backdoor and I want to be able to stop it.
- Next message: Richard Roddy [MSFT]: "RE: External Incoming BCC/Distribution Lists"
- Previous message: Kirill S. Palagin: "Re: Restoring a folder in an inbox from Exchange 2003"
- In reply to: Mark Apolony: "Inbound email attacks going to whole of GAL"
- Messages sorted by: [ date ] [ thread ]
