lautreg

joined 11 months ago
sorted by: new top controversial old
Did you know that if a spammer uses your email address as the FROM: address, which is easy to do, all the bounce messages will go to your email address? If the spammer really hates you, they will send in c/cybersecurity@fedia.io
[–] lautreg@pouet.chapril.org 2 points 1 month ago

@Jerry@hear-me.social
Oh yes.
I can't check, but I think there is setting to refuse connexion with the sender server if SPF doesn't mach.
Like the policy in the DMARC?

Or, in spamd/spamassassin, to just drop the incoming email in these case?

(I'm on phone, I may write more wrongly than usual)

Did you know that if a spammer uses your email address as the FROM: address, which is easy to do, all the bounce messages will go to your email address? If the spammer really hates you, they will send in c/cybersecurity@fedia.io
[–] lautreg@pouet.chapril.org 5 points 1 month ago (2 children)

@Jerry@hear-me.social
There is 2 mechanisms against this.

  • SPF
  • Signature with DKIM
    Your provider should check these.
    Many providers don't accept email if one is missing or wrong, or flag theses emails as spam.
Important reminder, if you own a domain name and don't use it for sending email. in c/cybersecurity@fedia.io
[–] lautreg@pouet.chapril.org 1 points 6 months ago

@Jerry@hear-me.social @pteryx@dice.camp
Some IP from DigitalOcean, or OVH make sometimes that the whole AS is considered suspicious.
I remember when I had a dedicated server at OVH, I needed many time to gain reputation. Also, may be the previous user for the IP trashed the reputation.
I also remember later, with a server at other place that I needed to ban the AS for several weeks to prevent flooding in log by trivial attacks.
Create good reputation need time. And, sometimes you need fill form (for Microsoft) with IP.