Date: Thu, 26 Jun 2014 11:46:50 -0700 From: Charles Swiger <cswiger@mac.com> To: Chris Maness <chris@chrismaness.com> Cc: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Re: Spam Backscatter? Message-ID: <640B1F34-F2DA-4B7C-A164-55BD6C663BA3@mac.com> In-Reply-To: <CANnsUMGge=qPn4AcmuKpruCkA7jhzsmFYP0gouNuprHbuVqg_g@mail.gmail.com> References: <CANnsUMEGFQG2C5=jPUauwzHKNezE-ZTZHoi0TxRWPRDxAQX6OA@mail.gmail.com> <3969729A-F60F-498A-8787-4E8B6978509D@mac.com> <CANnsUMGge=qPn4AcmuKpruCkA7jhzsmFYP0gouNuprHbuVqg_g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi-- On Jun 26, 2014, at 11:32 AM, Chris Maness <chris@chrismaness.com> wrote: > On Thu, Jun 26, 2014 at 11:04 AM, Charles Swiger <cswiger@mac.com> wrote: >> On Jun 26, 2014, at 6:36 AM, Chris Maness <chris@chrismaness.com> wrote: >>> Does spam in my outgoing queue mean that I am generating backscatter from >>> failed spam delivery? >> >> Probably. (Or you're generating it locally, or relaying it....) > > I am not an open relay as far as I can tell. I am not listed on any RBL, and I have had an email security test, and it confirmed I am not either. I don't see any suspicious processes running? Are there anymore things that I could check to verify this? Check your sendmail logs for queue IDs of the mail in the outgoing queue. If those were received by your server from outside, then it's likely backscatter. >>> If so, how can I filter it. I currently have 118 messages in my outgoing queue. >>> >>> Suggestions? >> >> Reject the spam at submission time, don't accept it and then try to bounce it. > > What configuration changes do you recommend? I am using sendmail with the only change to the configuration is the addition of 5 RBL's. Explicitly blacklisting frequent bad sending IPs via REJECT in /etc/mail/access helps. For a small domain, greylisting also works well, something like http://hcpnet.free.fr/milter-greylist/. There are other useful milters like: http://www.benzedrine.cx/milter-regex.html. http://www.sendmail.com/sm/open_source/docs/m4/anti_spam.html Regards, -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?640B1F34-F2DA-4B7C-A164-55BD6C663BA3>