<div>
Did u checked the safe sender list on Exchange?
</div>


Did u checked the safe sender list on Exchange?

<div>
The safe sender list is empty. The other thing is that the spoofed email user is a local user email address, meaning the incoming email shows as coming from an internal user on the local domain. Do I need to enable the SenderId for Internal to catch this?
</div>


The safe sender list is empty. The other thing is that the spoofed email user is a local user email address, meaning the incoming email shows as coming from an internal user on the local domain. Do I need to enable the SenderId for Internal to catch this?

<div>
<div class="content wysiwyg-content">
I am running Exchange 2010 and we have a SPF record set including the exchange server's IP address. We are still getting spoofed incoming email and the header shows the following:<br />
<br />
X-MS-Exchange-Organization<wbr />-Antispam-<wbr />Report: SenderOnRecipientSafeSende<wbr />rsList<br />
X-MS-Exchange-Organization<wbr />-SCL: -1<br />
&nbsp;<br />
I have the SenderID enabled<br />
<br />
Why does Exchange think this spoofed user is on the safe sender list when his originating IP does match our IP?
</div>
</div>


I am running Exchange 2010 and we have a SPF record set including the exchange server's IP address. We are still getting spoofed incoming email and the header shows the following:

X-MS-Exchange-Organization-Antispam-Report: SenderOnRecipientSafeSendersList
X-MS-Exchange-Organization-SCL: -1
 
I have the SenderID enabled

Why does Exchange think this spoofed user is on the safe sender list when his originating IP does match our IP?

Exchange letting spoofed emails through

Within Internet message handling services (MHS), a message transfer agent or mail transfer agent (MTA) or mail relay is software that transfers electronic mail messages from one computer to another using a client–server application architecture. A MTA implements both the client (sending) and server (receiving) portions of the Simple Mail Transfer Protocol (SMTP). The terms mail server, mail exchanger, and MX host may also refer to a computer performing the MTA function. The Domain Name System (DNS) associates a mail server to a domain with mail exchanger (MX) resource records containing the domain name of a host providing MTA services.