Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

MailEnable and Spam

Posted on 2012-03-20
5
1,063 Views
Last Modified: 2012-03-23
I've a dedicated server using MailEnable as Mail Server.
My customer is... let's say CustomerDomain.com to ease my life.

Since 2 days we are beeing bombarded by emails sent by "AnEmployee@CustomerDomain.Com".  But when i look at the real message header, i see that it's sent from other places.

Here's few examples of messages headers:

Received: from atayatirim.com.tr ([125.235.39.68]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 18:26:20 -0600
Message-ID: <Wed, 21 Mar 2012 07:25:24 +0700.707080@CustomerDomain.com>
Date: Wed, 21 Mar 2012 07:25:24 +0700
From: <alain@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <huskierks21@atayatirim.com.tr>

Open in new window


Another example
Received: from uob-oskam.com.my ([80.174.113.48]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 14:43:06 -0600
Message-ID: <Tue, 20 Mar 2012 21:42:09 +0100.807090@CustomerDomain.com>
Date: Tue, 20 Mar 2012 21:42:09 +0100
From: <alain@CustomerDomain.com>,
	<info@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>,
	<fbellavance@CustomerDomain.com>,
	<info@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <steakvc2101@uob-oskam.com.my>
X-Read: 1

Open in new window


How is it possible to stop these "impersonations" with MailEnable?

Thanks for your help
0
Comment
Question by:cdebel
  • 3
  • 2
5 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 500 total points
ID: 37747919
I have never used MailEnable, but do you have any anti-spam/spoofing features installed?

http://www.mailenable.com/features/anti-spam.asp
0
 
LVL 10

Author Comment

by:cdebel
ID: 37747964
I've activated the "Enable DNS BlackListing" and "Enable URL Blacklisting", and subscribed to BarracudaCentral.org.

I've also protected the Relaying (for outgoing emails to other domain names), and it requires to be authenticated, and it always require a POP3 connection prior to the SMTP connection.
0
 
LVL 10

Author Comment

by:cdebel
ID: 37748107
I must say that this subscription to BarracudaCentral.org is quite recent.

We keep receiving these emails, but they are marked as junk since i see that in the email envelope:

X-ME-Content: Deliver-To=Junk

I'll let it run like this for a while and see if it reduce the amount of undetected spam.

Once that i've seen that it's working properly and that there's no "False Positive", i'll stop marking them as spam and simply mark them for deletion...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 37748166
Cool good luck!
0
 
LVL 10

Author Closing Comment

by:cdebel
ID: 37757994
I've marked the emails to be deleted instead of placing it in the junk folder.  There was no false positive.  We still have some incomming spams, but for the moment that's acceptable.
If it become a problem, we might buy a license of MailEnable to add Bayesian Filtering, SPF and other stuff.

We still can access the MailEnable logs to see the real senders, to determine if we got false positive (by looking at the Error 554).

Thanks for your help
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Phishing attempts can come in all forms, shapes and sizes. No matter how familiar you think you are with them, always remember to take extra precaution when opening an email with attachments or links.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question