[ale] Dealing with spam and phishin.
Keith Hopkins
hne at hopnet.net
Fri Jun 16 05:44:16 EDT 2006
H. A. Story wrote:
> I just got another phishin email for a bank that I have no part of.
> Recently, I have been looking at the email headers to see where the
> email comes from. I usually forward the email to who ever is listed in
> the abuse and to whomever they are trying to pose as. As of late
> ebay, paypal and yahoo are good about responding and taking action.
> Such as closing the account in yahoo case. Mind you I don't get much
> spam after I stopped using outlook and running Mozzila email client and
> setting up filters. Just can't help but wonder if reporting phishin
> helps. Maybe I should look into blacklist, but do those real help with
> the seeming random domains?
>
> Now this last email. The domain is hosted on godaddy according to
> whois. And they allowed the phone number to be registered as
> 1231231234. (WTF?) I think that is just wrong. So I went to the
> website link in the email put in made up info and in the email address I
> put that goofs email address. Maybe, I should send him a FAX on
> 1231231234. Just unreal.
>
> Adrin
I made a couple of recent changes to my postfix config which reduced my spam intake from about 200 a day to about 20 a day.
smtpd_sender_restrictions = reject_unknown_sender_domain, reject_unverified_sender
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname, reject_unknown_hostname, reject_non_fqdn_hostname
reject_unverified_sender seems to have done the most good. It delays delivery until it can verify the sender addr can itself accept mail (and then caches the sender's address). Fine for my home mail server ( < 1 msg / sec ), but probably too much overhead to a high volume mail server.
--Keith
More information about the Ale
mailing list