spam problem

i get lots of spam from myself.
do you know what's wrong with it from header?
Received:  from odc-mgw02.xxx.com ([165.241.62.227])          by test.jp.xxx.com (Lotus Domino Release 7.0.3FP1)          with ESMTP id 2008111202294705-62660 ;          Wed, 12 Nov 2008 02:29:47 +0900
X_AuditID:  0a31b1e1-a9050bb000001130-ec-4919c10ab250
Received:  from mail172.messagelabs.com (mail172.messagelabs.com [216.82.254.3])	by odc-mgw02.xxx.com (Symantec Mail Security) with SMTP id C4DAF3DC002	for <john.john@xxx.com>; Wed, 12 Nov 2008 02:29:46 +0900 (JST)
X_Env_Sender:  john.john@xxx.com
X_Msg_Ref:  server-4.tower-172.messagelabs.com!1226424584!26152912!1
X_StarScan_Version:  5.5.12.14.2; banners=-,-,-
X_Originating_IP:  [82.54.237.244]
X_SpamInfo:  blackholed by DUL
X_Spam_Flag:  YES
Subject:  SPAM:  I found driving license
Received:  (qmail 2038 invoked from network); 11 Nov 2008 17:29:45 -0000
Received:  from host244-237-dynamic.54-82-r.retail.telecomitalia.it (HELO host177-43-dynamic.183-80-r.retail.telecomitalia.it) (82.54.237.244)  by server-4.tower-172.messagelabs.com with SMTP; 11 Nov 2008 17:29:45 -0000
SendTo:  <john.john@xxx.com>
From:  <john.john@xxx.com>
MIME_Version:  1.0
Importance:  1
$MessageID:  <20081111172946.C4DAF3DC002@odc-mgw02.xxx.com>
PostedDate:  11/11/2008 11:29:46
X_Brightmail_Tracker:  AAAAAA==
$MIMETrack:  Itemize by SMTP Server on test/SVR/xxx CORP(Release 7.0.3FP1|February 24, 2008) at 2008/11/12 02:29:47,MIME-CD by Notes Client on john john/JP/xxx CORP(Release 5.0.10 |March 22, 2002) at 11/12/2008 14:30:39,MIME-CD complete at 11/12/2008 14:30:39
SMTPOriginator:  john.john@xxx.com
HasSafeStamp:  
RouteServers:  CN=test/OU=SVR/O=xxx CORP,CN=test/OU=SVR/O=xxx CORP
RouteTimes:  11/11/2008 11:29:47-11/11/2008 11:29:48,11/11/2008 11:31:00-11/11/2008 11:31:01
$Orig:  
$UpdatedBy:  CN=test/OU=SVR/O=xxx CORP,CN=test/OU=SVR/O=xxx CORP
Categories:  
$Revisions:  
DeliveredDate:  11/11/2008 11:31:01
 
If you are unable to see the message below, click here to view.

Open in new window

Hiroyuki TamuraField EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

war1Commented:
Hello hiroyuki718,

Someone is spoofing your address and sending spam mail as you.  Make sure your computer is not an open relay
http://www.postcastserver.com/help/Blocking_Open_Relays.aspx
and
http://support.microsoft.com/kb/324059

If you have control of the server, you can Integrate SPF and DomainKeys, which would help to stop spoofing in the future:

SPF:
http://www.openspf.org/

DomainKeys:
http://domainkeys.sourceforge.net/

Hope this helps!
war1
0
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
messagelab spam filter can catch this spam.
but i guess if i block this spammer, SPF or Domainkeys is the only way...
if i leave it, i get more spams... any other damage to me?
0
Hiroyuki TamuraField EngineerAuthor Commented:
and which line exactly tells "spoofing"? from snippet
0
Cloud Class® Course: Amazon Web Services - Basic

Are you thinking about creating an Amazon Web Services account for your business? Not sure where to start? In this course you’ll get an overview of the history of AWS and take a tour of their user interface.

war1Commented:
The combination of sending server which is not yours and from address which is yours show that spoofing is occurring.
0
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
which line shows sending server?
0
war1Commented:
It is usually the last Received line in the header

Received:  from host244-237-dynamic.54-82-r.retail.telecomitalia.it (HELO host177-43-dynamic.183-80-r.retail.telecomitalia.it) (82.54.237.244)  by server-4.tower-172.messagelabs.com with SMTP; 11 Nov 2008 17:29:45 -0000
0
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
we use frame relay to connect vpn to our main server.
can you guess what's the possibility they find our address?
0
war1Commented:
You left your address in a public website?  You sign up to a bad website, like pronography or shopping website, that collect addresses for spam.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Hiroyuki TamuraField EngineerAuthor Commented:
Thank you.
0
war1Commented:
You are welcome, hiroyuki !
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Software

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.