Block Spoofed Emails
Posted on 2011-02-17
I have a User who is being hit pretty hard with spoofed emails from somewhere every two minutes, using multiple spoofed (yet legitimate) email addresses.
We are using SBS 2008 and Trend Micro WFBS Advanced including the Inbound Email Security. To date I have just blocked based upon the email address, but this does not actually resolve the issue.
I assume I need to look at the Email Header to work out the IP and then block based upon that IP? The headers look pretty busy, so maybe there is a good tool I can use?