How to stop spammers from using our email addresses

My company has got a valid email address support@company.com. Somehow it seems like the email address is used by spammers to send out spam emails. Whenever we check the inbox, we'll get tons of "Undeliverable:Your e-mail could not be delivered" to email addresses that we have never seen before, and we never send emails to those email addresses.

I have run a check of our IP on the major blacklists and the results were clean. We are using exchange server 2003, is there anything that I can do to stop people from using our email address to send spam emails?
LVL 1
megkhpAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ridCommented:
1. Re-check the relaying rules of the Exchange server.
2. Re-check major blacklists.
3. Pray...
Unfortunately this is a problem with NDR's, as far as I can see... What happens is that a spammer, somewhere, sends out a lot of messages, to valid and non-valid addresses. They use a return adress that is on your domain (support@domain.com is not that esoteric) and all NDR's generated at domains that receive this spam message and have no valid user there, go to your domain, since you're set as sender.

Personally I think it would be a bit better if all the invalid recipients only caused a failure and not a NDR, but that is in the hands of the mail admins at the domains involved. Exchange has NDR's enabled as default... which is total madness to me, as this just generates a lot of totally meaningless messages on the net.

You can't stop spammers from using your mail adress as sender. You could fight NDR's by switching them off on your server and try to persuade others to folloow suit.
/RID
The_IT_GarageCommented:
Configure your Exchange Server block open SMTP relaying, see the article "How to block open SMTP relaying and clean up Exchange Server SMTP queues in Windows Small Business Server"

http://support.microsoft.com/?id=324958#E05B0ADAAA&FR=1

See the section called "Configure the Exchange Server to block open SMTP relaying" on that page

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
megkhpAuthor Commented:
I followed the above link and tried to determine whether the Exchange Server is an open SMTP relay. When I tried to open the exchange public IP address, it showed “220 **************************”, and I get a “500 syntax error, command unrecognized.” When trying to ehlo Microsoft.com

Any suggestion that I can continue with the relay test?
SolarWinds® VoIP and Network Quality Manager(VNQM)

WAN and VoIP monitoring tools that can help with troubleshooting via an intuitive web interface. Review quality of service data, including jitter, latency, packet loss, and MOS. Troubleshoot call performance and correlate call issues with WAN performance for Cisco and Avaya calls

ridCommented:
Try www.dnsstuff.com and see if your server is listed as spam source.
/RID
The_IT_GarageCommented:
You did steps 1 2 and 3 first, correct? You shouldn't see a normal command prompt where you type "ehlo anydomain.com". Don't just jump from 2 to 4, for example.

If you it correctly and stil lget a synatax error you possibly have other e-mail configuration issues
megkhpAuthor Commented:
I think we have other email config issues as The_IT_Garage suggested. But thanks for the link to the article to test the exchange server for open relay.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking

From novice to tech pro — start learning today.