?
Solved

MailEnable and Spam

Posted on 2012-03-20
5
Medium Priority
?
1,096 Views
Last Modified: 2012-03-23
I've a dedicated server using MailEnable as Mail Server.
My customer is... let's say CustomerDomain.com to ease my life.

Since 2 days we are beeing bombarded by emails sent by "AnEmployee@CustomerDomain.Com".  But when i look at the real message header, i see that it's sent from other places.

Here's few examples of messages headers:

Received: from atayatirim.com.tr ([125.235.39.68]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 18:26:20 -0600
Message-ID: <Wed, 21 Mar 2012 07:25:24 +0700.707080@CustomerDomain.com>
Date: Wed, 21 Mar 2012 07:25:24 +0700
From: <alain@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <huskierks21@atayatirim.com.tr>

Open in new window


Another example
Received: from uob-oskam.com.my ([80.174.113.48]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 14:43:06 -0600
Message-ID: <Tue, 20 Mar 2012 21:42:09 +0100.807090@CustomerDomain.com>
Date: Tue, 20 Mar 2012 21:42:09 +0100
From: <alain@CustomerDomain.com>,
	<info@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>,
	<fbellavance@CustomerDomain.com>,
	<info@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <steakvc2101@uob-oskam.com.my>
X-Read: 1

Open in new window


How is it possible to stop these "impersonations" with MailEnable?

Thanks for your help
0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 2000 total points
ID: 37747919
I have never used MailEnable, but do you have any anti-spam/spoofing features installed?

http://www.mailenable.com/features/anti-spam.asp
0
 
LVL 10

Author Comment

by:Christian de Bellefeuille
ID: 37747964
I've activated the "Enable DNS BlackListing" and "Enable URL Blacklisting", and subscribed to BarracudaCentral.org.

I've also protected the Relaying (for outgoing emails to other domain names), and it requires to be authenticated, and it always require a POP3 connection prior to the SMTP connection.
0
 
LVL 10

Author Comment

by:Christian de Bellefeuille
ID: 37748107
I must say that this subscription to BarracudaCentral.org is quite recent.

We keep receiving these emails, but they are marked as junk since i see that in the email envelope:

X-ME-Content: Deliver-To=Junk

I'll let it run like this for a while and see if it reduce the amount of undetected spam.

Once that i've seen that it's working properly and that there's no "False Positive", i'll stop marking them as spam and simply mark them for deletion...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 37748166
Cool good luck!
0
 
LVL 10

Author Closing Comment

by:Christian de Bellefeuille
ID: 37757994
I've marked the emails to be deleted instead of placing it in the junk folder.  There was no false positive.  We still have some incomming spams, but for the moment that's acceptable.
If it become a problem, we might buy a license of MailEnable to add Bayesian Filtering, SPF and other stuff.

We still can access the MailEnable logs to see the real senders, to determine if we got false positive (by looking at the Error 554).

Thanks for your help
0

Featured Post

Enroll in August's Course of the Month

August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The new Gmail Phishing Scam going around is surprising even the savviest of users with its sophisticated techniques.
This article outlines some of the reasons why an email message gets flagged as spam on a recipient's end.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question