spam sent from my spoofed domain not my server
Posted on 2006-05-04
I have a 'private' domain name, i.e. only my family uses it. Call it mydomain.ca for discussion. I use a relatively well established ISP that hosts my web site with the domain name, and I use the domain registrar's service to route e-mails that use the domain name to the appropriate address at the ISP.There are 5 legitimate mailboxes. For the past week, someone has been sending spam using mydomain.ca - with nonsense addresses like firstname.lastname@example.org. I get in my mailbox any mail to any address @mydomain.ca, except those properly addressed to other family members, so I am getting a score of NDRs a day (which I delete, of course.)
I have read a few other questions on this - several had no solution, one had a now-dead link, and one just suggested turning off the NDR function on Exchange so mydomain.ca would not be floated temptingly in front of spammers to use. None of these actually prevents or stops what is happening. I use Eudora for mail, but since my system is not sending it, that does not seem relevant.
I presume this is inevitable - the ISP service dept thought so - and I should just wait till the spammer moves on ....but just in case: any suggestions? I share the fear of an earlier questioner that legitimate mail from me and my family will be blacklisted.