Solved

Spamming on Domino V5

Posted on 2000-02-26
6
386 Views
Last Modified: 2013-12-18
We are in trouble please help - Someone has decided to use our server as a Spamming gateway. How do I stop them?
The server is currently on overload normally a couple of hundred mail meassages go through it every day - that now up to thousands. There must be some set ups to restrict this!
For example as all users accessing it are somaeone@actionimages.com - is it possible to only allow those users to send mail from the server (I cant think why we would need to allow access to anyone else)although I guess the downside if that was done presumably we'd end up with 1000's of mails that did'nt reach their destination.

PLEASE HELP!
0
Comment
Question by:davidtjacobs
  • 4
  • 2
6 Comments
 
LVL 1

Expert Comment

by:rfharris
ID: 2560872
From Lotus' Admin help database: Restricting who can use your system to relay Internet mail

Restricting who can use your system to relay Internet mail
You can control which incoming messages from hosts outside the local Internet domain are accepted for recipients outside the local Internet domain. Setting this kind of restriction prevents people from trying to use your messaging system as a mail relay to save money or to provide them with anonymity. By sending the message through your system when it is actually destined for another system, your system appears as the last hop if the destination server does a DNS lookup.
To prevent unauthorized use of your system as a mail relay, the Router checks whether the machine sending the message is within the local Internet domain. The Router checks the "Local primary Internet domain" and "Alternate Internet domain aliases" fields in the Global Domain document to determine which Internet domain names your company uses. If the message is not from a server within your organization, the Router checks each recipient address to see if the recipient is within the local Internet domain. If not, Domino uses the restrictions that you configure to determine relay access.

The format for entering IP addresses is [a.b.c.d], where a, b, c, and d are numbers between 0 and 255 inclusive. You can include a wildcard (*) in your entries, but it must be for an entire octet -- for example, 192.168.17.*. Enter IP addresses in brackets -- for example, [192.168.10.17]

To restrict relay access

1. Make sure you already have a Configuration Settings document for the server(s) to be configured.

2. From the Domino Administrator, click the Configuration tab and expand the Messaging section.

3. Click Configurations.

4. Select the Configuration Settings document for the mail server or servers you want to restrict mail on and click Edit Configuration.

5. Click the Router/SMTP - Restrictions and Controls - SMTP Inbound Controls tab.

6. Complete these fields in the Inbound Relay Controls section, and then save the document:  Field Enter
 Allow messages from external Internet domains to be sent only to the following Internet domains Internet domains to which your system relays messages sent by hosts outside the local Internet domain. If you enter Internet domains in this field, only messages to recipients in domains matching these entries can relay through your system. Messages for recipients in other external Internet domains are denied. For example, you enter lotus.com, ibm.com in the field. Domino accepts only messages to recipients with addresses in the lotus.com or ibm.com domains. Domino denies all other messages to recipients in external domains.
 Deny messages from external Internet domains to be sent to the following Internet domains Internet domains for which your system will not relay messages sent by hosts outside the local Internet domain. If you enter Internet domains in this field, all messages to recipients in external Internet domains except those whose addresses match entries in this field relay through your system. Messages are denied only for recipients with addresses matching the entries in this field. For example, you enter lotus.com in the field. Messages for all recipients in all external Internet domains except lotus.com can relay through your system. Domino denies messages for recipients in the lotus.com domain.
 Allow messages only from the following external Internet hosts to be sent to external Internet domains The host names and/or IP addresses from which your system relays messages to recipients with addresses outside the local Internet domain. If you enter host names and/or IP addresses in this field, only messages from servers matching these entries can relay through your system. Messages from other servers are denied. For example, you enter lotus.com, ibm.com in the field. Domino accepts only messages to recipients in external Internet domains from servers with host names ending in lotus.com or ibm.com. Domino rejects messages for these recipients from all other servers.
 Deny messages from the following external Internet hosts to be sent to external Internet domains The host names and/or IP addresses from which your system will not relay messages to recipients with addresses outside the local Internet domain. If you enter host names and/or IP addresses in this field, messages to recipients in external Internet domains from all servers except those matching entries in this field relay through your system. Messages are denied only from servers matching the entries in this field. For example, you enter lotus.com in the field. Domino accepts messages to recipients in external Internet domains from all servers except those with host names ending in lotus.com. Domino denies messages to recipients in external Internet domains from servers in the lotus.com domain.
Note If you specify the same entry in an Allow field and a Deny field so there is a conflict between the two fields, Domino denies messages for that entry. The Deny setting takes precedence for security reasons. Be careful not to have the same entry in an Allow field and a Deny field for the same setting. If you deny relaying to servers in the xyz.com Internet domain but allow host mail.acme.org to relay, mail.acme.org cannot relay to the xyz.com domain. These restrictions prevent people from routing from a denied source through an accepted one to your domain. Domino rejects the mail based on the original sender.

Note You can use an asterisk (*) to indicate "all domains." For example, putting * in an Allow field allows all domains to perform that operation.
0
 
LVL 1

Expert Comment

by:rfharris
ID: 2560889
Note that the above will allow you to restrict the "who is authorized to send mail through my Domino server" to only your local community -- BUT -- the local community is defined by an IP range not a domain name (someone@actionimages.com).  

Implications:
If you have users who send SMTP mail from non-Notes clients (Eudora, Outlook, Palm Pilots via POP, etc.) through this server this will continue to work *provided* they have an IP address from within your specified range (they are *on* your network physically or are dialed in via RAS).

This will block your own valid users who are physically outside your network (traveling or working from home) and accessing your Domino server via non-Notes clients through a external ISP.

This step creates no additional impact to Notes-based mail traffic (from your users located inside or outside your network) even if this Notes-based mail traffic is addressed to an SMTP address.  If the user belongs to a domain with permission to send outbound SMTP mail traffic they will still be permitted to send the SMTP messages even if they are accessing your Domino server from an outside ISP.  (This is a good thing!)

--
In short - when you enable the above restriction be ready to hear whispers of complaints from internal users who were referencing this server for outbound SMTP using non-Notes clients/devices.
0
 
LVL 1

Accepted Solution

by:
rfharris earned 200 total points
ID: 2575162
davidtjacobs -

Any update?  Have you controlled the spamming through your server?
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 

Author Comment

by:davidtjacobs
ID: 2575808
Yes thank-you the spamming has stopped - I added only to allow users within my domain to recieve emails - I dont yet know if this will have any negative effects - I doubt it though. Thanks.
0
 
LVL 1

Expert Comment

by:rfharris
ID: 2576243
Glad to hear it!
0
 

Author Comment

by:davidtjacobs
ID: 2705146
Hi again,
Well I thought all was ok we have a machine that distributes automated emails - it runs MAPI and is within our domain - I have followed your suggestions and as mentioned in previous responses they resolved the spamming however they have stopped this machine sending returning the following line on the Domino server:
rejected due to policy reasons - relays to recipients domain denied in configuration
Can you help
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

You’ve got a lotus Domino web server, and you have been told that “leverage browser caching” is a must do. This means that we have to tell the browser everywhere in the web to use cache. In other words, we set (and send) an expiration date in the HT…
I thought it will be a good idea to make a post as it will help in case someone else faces these issues. I trust this gives an idea how each entry in Notes.ini can mean a lot for the Domino Server to be functioning properly. This article discusses t…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now