Re: Domain spoofing
- From: "Rich Matheisen [MVP]" <richnews@xxxxxxxxxxxxxxxxxxxxx>
- Date: Sun, 15 Oct 2006 23:54:12 -0400
"Jim Schwartz" <shamusnc@xxxxxxxxxxxxxxxxx> wrote:
Except backscatter would come from <> and not their domain.
True. But refusing to accept mail addressed to /every/ mail-enabled
group you have is a good start. Even if it's not backscatter, stopping
spam to a big DL is a "good thing".
And if the message is disguised as a NDR, looking for your a
combination of your IP address with a bad server name is a good idea.
I agree that
accepting email from the internet "from" your domain isn't a good idea. Now
if I could just convince all those dumb developers and websites that it's a
bad idea.
Doesn't that just piss you off? Ever try getting a company like Cisco
to change? Or a telco? :-<
I like using IP connection based filtering for the lunkheads since they are
forced to tell me when they light up a new server. If I gave them some
authentication method, they'd end up posting it and using it wherever they
wanted.
That can be a lot of work in a big company, and error prone.
--
Rich Matheisen
MCSE+I, Exchange MVP
MS Exchange FAQ at http://www.swinc.com/resource/exch_faq.htm
Don't send mail to this address mailto:h.pott@xxxxxxxxxxxxx
Or to these, either: mailto:h.pott@xxxxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxx mailto:melvin.mcphucknuckle@xxxxxxxxxxxxxxx
.
- Follow-Ups:
- Re: Domain spoofing
- From: Jim Schwartz
- Re: Domain spoofing
- From: Joe
- Re: Domain spoofing
- References:
- Domain spoofing
- From: Joe
- Re: Domain spoofing
- From: Leif Pedersen [MVP]
- Re: Domain spoofing
- From: Rich Matheisen [MVP]
- Re: Domain spoofing
- From: Jim Schwartz
- Domain spoofing
- Prev by Date: Recovery storage group?
- Next by Date: Re: SMTP Queue keeps filling
- Previous by thread: Re: Domain spoofing
- Next by thread: Re: Domain spoofing
- Index(es):
Relevant Pages
|
