Re: turn smtp into black hole?

Tech-Archive recommends: Fix windows errors by optimizing your registry


"Sanford Whiteman" <swhitemanlistens-software@xxxxxxxxxxxxxxxxxxxxx> wrote
in message news:op.uniidhjd6c17zw@xxxxxxxxxxxxxxxxxxxxxxx
> i also presume that a non-delivery message gets sent back to the
> spammer or the hijacked computer who is sending them to random names
> at my server... i also don't want the spammer to get bounces, i
> would prefer that they not know that anything happened with their
> mail.

The problem is worse than you think, in that your generation of this
backscatter can get *you* blacklisted.

However, the solution is not to silently delete bounce messages. For
one thing, this does a disservice to anyone trying to communicate with
your domain who happens to misspell an address.

The solution is to disallow mail to unknown recipients *during the
initial SMTP conversation with your MX*. It really is unacceptable in
2009 to not be doing this. It used to be okay, maybe pre-2000, but not
now.

You can try 5xxSink (search newsgroup), though this is an imperfect
tool. I would recommend a full-fledged product like Vamsoft's ORF,
which plugs into IIS SMTP and will reject unknown recipients and much,
much more.

--Sandy



------------------------------------
Sanford Whiteman, Chief Technologist
Broadleaf Systems, a division of
Cypress Integrated Systems, Inc.
------------------------------------

'my domain' is me... thats it, just me with 2 or 3 aliases. And i have only
given the address to 2 or 3 people who have to send me direct mail with big
attachments occasionally that get filtered by the isp server that i route
all my other mail through. The spammers aren't sending a lot of these
mails, yet... i get maybe 5-10 a day at most so far. but i know the more
that get through the more there will be behind them. and since its on a dsl
line many servers already block outgoing mail from there... i just mostly
want to block the backscatter reject messages that may happen to get
through.

Relevant Pages

  • Re: Loosing spam fight
    ... spammer's mail delivery rate at least in half. ... the sending server is timing out without getting response. ... Since the "cure" for greylisting involves at least cutting the spam rate ... spammer will stop adopting when people stop getting horny or greedy so I guess ...
    (freebsd-stable)
  • Re: IMS queued outbound messages
    ... Exchange 5.5 does not have that feature. ... NDR's are generating when a spammer does not hace specific email addresses, ... > MVP for Exchange Server ... If the server is closed for relaying, does that mean no NDR will ...
    (microsoft.public.exchange.admin)
  • Re: How do I pick up the mail servers IP instead of the local ISP?
    ... filter, you are coming really close to hacking the filter (and with a ... corporate server where much of the mail is bound that filters out non-us ... As for being a spammer, you can't do a lot of smamming with the 50 to 150 ... >> corporate systems at the head office that will be receiving the ...
    (microsoft.public.windows.server.security)
  • Re: Can Bass Fishing Games Really Hone Your Skills?
    ... this only gives you the server info - there are other ways to track ... spammer has multiple nyms and addys but always uses this ip range ... spams for cameras, lingerie, golf lessons, and now fishing ... weather with some of the bass fishing games on the market today. ...
    (alt.support.arthritis)
  • Re: NDR messages...
    ... Ive gone through the various pages closing the open relay, my router firewall doesnt allow any traffic in on email ports. ... Sounds like your server is the victim of a reverse NDR attack. ... Basically a spammer is generating a message to a non-existent email address at your domain, your server generates a non-delivery-message for it but the spammer has provided the address of their intended target as the sender of the email, so your server is routing spam for the spammer under cover of NDRs. ...
    (microsoft.public.windows.server.sbs)