IIS and SMTP - SPAM techniques

This is Interesting: Free IT Magazines  
Home > Archive > IIS and SMTP > January 2004 > SPAM techniques





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author SPAM techniques
Rob Huseman

2004-01-24, 2:05 am

I have a public SMTP server that is (to my knowledge)
properly configured to not allow the server being a
relay. The server passes all of the test from the public
sites and they report that we do not allow relay. The
problem comes in that it appears that the Spammers have
gotten fairly adept at getting around things. One
technique I am now seeing includes putting the "to"
address as a fake address within our org. So, the Spam
will be addressed to (as an example) fake@ourdomain.com.
That causes our server to accept the email. Our server
then sends out all of the bcc recipients that they have
listed and we get all of the NDRs, complaints etc. that
come along with their being successfull. I realize that
our server is supposed to accept the mail because it is
addressed to our valid domain. What I would like to know
is how to keep it from broadcasting the bcc list that is
associated with it.
=?Utf-8?B?SmVmZg==?=

2004-01-24, 2:06 am

One way of getting around this is to set an IP address range of authorized connections and get rid of the domain.
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com