Solved

MailEnable and Spam

Posted on 2012-03-20
5
1,038 Views
Last Modified: 2012-03-23
I've a dedicated server using MailEnable as Mail Server.
My customer is... let's say CustomerDomain.com to ease my life.

Since 2 days we are beeing bombarded by emails sent by "AnEmployee@CustomerDomain.Com".  But when i look at the real message header, i see that it's sent from other places.

Here's few examples of messages headers:

Received: from atayatirim.com.tr ([125.235.39.68]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 18:26:20 -0600
Message-ID: <Wed, 21 Mar 2012 07:25:24 +0700.707080@CustomerDomain.com>
Date: Wed, 21 Mar 2012 07:25:24 +0700
From: <alain@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <huskierks21@atayatirim.com.tr>

Open in new window


Another example
Received: from uob-oskam.com.my ([80.174.113.48]) by CustomerDomain.com with MailEnable ESMTP; Tue, 20 Mar 2012 14:43:06 -0600
Message-ID: <Tue, 20 Mar 2012 21:42:09 +0100.807090@CustomerDomain.com>
Date: Tue, 20 Mar 2012 21:42:09 +0100
From: <alain@CustomerDomain.com>,
	<info@CustomerDomain.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: <alain@CustomerDomain.com>,
	<fbellavance@CustomerDomain.com>,
	<info@CustomerDomain.com>
Subject: hi
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Return-Path: <steakvc2101@uob-oskam.com.my>
X-Read: 1

Open in new window


How is it possible to stop these "impersonations" with MailEnable?

Thanks for your help
0
Comment
Question by:cdebel
  • 3
  • 2
5 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 500 total points
ID: 37747919
I have never used MailEnable, but do you have any anti-spam/spoofing features installed?

http://www.mailenable.com/features/anti-spam.asp
0
 
LVL 10

Author Comment

by:cdebel
ID: 37747964
I've activated the "Enable DNS BlackListing" and "Enable URL Blacklisting", and subscribed to BarracudaCentral.org.

I've also protected the Relaying (for outgoing emails to other domain names), and it requires to be authenticated, and it always require a POP3 connection prior to the SMTP connection.
0
 
LVL 10

Author Comment

by:cdebel
ID: 37748107
I must say that this subscription to BarracudaCentral.org is quite recent.

We keep receiving these emails, but they are marked as junk since i see that in the email envelope:

X-ME-Content: Deliver-To=Junk

I'll let it run like this for a while and see if it reduce the amount of undetected spam.

Once that i've seen that it's working properly and that there's no "False Positive", i'll stop marking them as spam and simply mark them for deletion...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 37748166
Cool good luck!
0
 
LVL 10

Author Closing Comment

by:cdebel
ID: 37757994
I've marked the emails to be deleted instead of placing it in the junk folder.  There was no false positive.  We still have some incomming spams, but for the moment that's acceptable.
If it become a problem, we might buy a license of MailEnable to add Bayesian Filtering, SPF and other stuff.

We still can access the MailEnable logs to see the real senders, to determine if we got false positive (by looking at the Error 554).

Thanks for your help
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

943 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

5 Experts available now in Live!

Get 1:1 Help Now