SpamCop FAQ : (Category) Help for abuse-desks and administrators : (Category) How can I control spam from my network? : How can I control unsolicited bounces?
Recently, there have been a lot of unsolicited bounces from ISPs which are created due to the following chain of events: • Spammer 0wns a box on an ISP network (zombie) • Zombie is programmed to use ISP’s mailserver to send spam • Spam sent has forged env-sender, not hosted by ISP. • Spam is rejected during delivery to recipient mailserver. • ISP mailserver generates a bounce to the original, forged env-sender. As a result of these messages (which are plauging my spamtraps as well as end-users’ inboxes), the ISP mailserver is listed (blocked). Here are some possible solutions to this problem, all requiring action from the ISP. • Look at your double-bounces and triage them. (rant on) For a long time, it has been conventional “wisdom” at large sites that double-bounces should simply be ignored. This was stupid from the begining, moreso in the current hostile email environment. Double-bounces are important indications of problems. They should not be ignored.
Related Questions
- SpamCop FAQ : (Category) Help for abuse-desks and administrators : (Category) How can I control spam from my network? : How can I control unsolicited bounces?
- SpamCop FAQ : (Category) Help for abuse-desks and administrators : Im receiving spam reports, but my mail server logs don reflect it. Why?
- SpamCop FAQ : (Category) Help for abuse-desks and administrators : How can I control what type of reports I receive?
