Date: Fri, 6 Feb 1998 10:14:32 -0800 (PST) From: "Jonathan M. Bresler" <jmb> To: dwoods@netgazer.com (Darrin R. Woods) Cc: isp@FreeBSD.ORG Subject: Re: spammer problem - help! Message-ID: <199802061814.KAA23740@hub.freebsd.org> In-Reply-To: <3.0.32.19980206093450.006933b0@netgazer.net> from "Darrin R. Woods" at "Feb 6, 98 09:36:33 am"
next in thread | previous in thread | raw e-mail | index | archive | help
Darrin R. Woods wrote: > I have had a problem over the last month or so of someone using our > mailer-daemon to send spam email to myself as well as users on our net. > > My sendmail is running on freebsd and I've applied all of the spammer > patches that I can find. I've even added the hostname in the spammer db > file but our system still accepts mail from him. > > How can I keep this guy and others from forging mail and making it look as > though it is coming from my mailer-daemon? > > Here is the header from one he sent to my email address yesterday: one option: reject all mail with "X-UIDL" or use procmail to drop it in a mailfolder that you can check whenever the spirit moves you. as people have explained the "X-UIDL" header, you shouldnt ever see it on mail. pop or imap uses it as status information on each message in your mailbox..... similarly you can use procmail to check the "Return-Path" against the domains listed in /etc/mail/.... jmb > > --------------------------------------------------------- > Return-Path: anitb@mail.t-1net.com > Received: from mail.t-1net.com (root@1Cust182.tnt2.stafford.tx.da.uu.net > [208.252.105.182]) by netgazer.net (8.8.5/8.7.3) with ESMTP id KAA03003 for > <dwoods@netgazer.com>; Thu, 5 Feb 1998 10:22:21 GMT > Date: Thu, 5 Feb 1998 09:41:31 -0600 > Message-Id: <199802051541.JAA02876@mail.t-1net.com> > From: MAILER-DAEMON@netgazer.net > Subject: Low Cost Advertising > X-UIDL: 6a53b1fd94536b2343668e60c04444de > ---------------------------------------------------------- > > > Thanks, in advance, and yes I have sent email to abuse@uu.net.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199802061814.KAA23740>