[ale] Dealing with spam and phishin.

Keith Hopkins hne at hopnet.net
Fri Jun 16 08:22:06 EDT 2006


Terry Lee Tucker wrote:
> On Friday 16 June 2006 05:44 am, Keith Hopkins <hne at hopnet.net> thus 
> communicated:
> --> H. A. Story wrote:
> --> > I just got another phishin email for a bank that I have no part of.
> --> > Recently, I have been looking at the email headers to see where the
> --> > email comes from.  I usually forward the email to who ever is listed in
> --> > the abuse and to whomever they are trying to pose as.   As of late
> --> > ebay, paypal and yahoo are good about responding and taking action.
> --> > Such as closing the account in yahoo case.   Mind you I don't get much
> --> > spam after I stopped using outlook and running Mozzila email client and
> --> > setting up filters.  Just can't help but wonder if reporting phishin
> --> > helps.  Maybe I should look into blacklist, but do those real help with
> --> > the seeming random domains?
> --> >
> --> > Now this last email.  The domain is hosted on godaddy according to
> --> > whois.  And they allowed the phone number to be registered as
> --> > 1231231234. (WTF?) I think that is just wrong.   So I went to the
> --> > website link in the email put in made up info and in the email address
>  I --> > put that goofs email address.   Maybe, I should send him a FAX on
>  --> > 1231231234.  Just unreal.
> --> >
> --> > Adrin
> -->
> --> I made a couple of recent changes to my postfix config which reduced my
>  spam intake from about 200 a day to about 20 a day. -->
> --> smtpd_sender_restrictions = reject_unknown_sender_domain,
>  reject_unverified_sender -->
> --> smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname,
>  reject_unknown_hostname, reject_non_fqdn_hostname -->
> --> reject_unverified_sender seems to have done the most good.  It delays
>  delivery until it can verify the sender addr can itself accept mail (and
>  then caches the sender's address).  Fine for my home mail server ( < 1 msg /
>  sec ), but probably too much overhead to a high volume mail server. -->
> --> --Keith
> -->
> --> _______________________________________________
> --> Ale mailing list
> --> Ale at ale.org
> --> http://www.ale.org/mailman/listinfo/ale
> -->
> 
> Do you know if there is a sendmail equivalent the controls you mention?
> 
> Thanks...

`man smtpd` and look under ACCESS CONTROLS for smtpd_client_restrictions, smtpd_helo_restrictions, smtpd_sender_restrictions, etc.

Having forgotten more about Sendmail than I would ever care to remember, I can now only point you to http://sendmail.org/doc/sendmail-current/doc/op/op.pdf (or uggc://jjj.whfgshpxvattbbtyrvg.pbz/).

--
Keith




More information about the Ale mailing list