On Fri, Apr 4, 2008 at 8:15 AM, Gert Ahrens <[EMAIL PROTECTED]> wrote: > Hello, > > more and more spammers use mailadresses from our own domain as serder > adresses of spam. In the past I had bypass all mails from our own > domain, but now that is impossible. > Last week I tryed to use MYNETS to distinguish between intern generated > mail and mail who are delivered from an extern mailserver. Now my problem > begins. I collect any extern mail with fetchmail and fetchmail delivers to > localhost:25, the local smtpd. Exactly the same way take all intern > generated mail with eGroupware(FeLaMiMail) or mail from my Squirrelmail > webinterfaces on our mailserver. I see no way to discern intern generated > from extern mail. > > our mailsystem: > version of amavis amavisd_new-2.3.3 > version of MTA postfix 2.2.9 > spamassassin 3.2.4 > > Do you have any ideas?
I'd suggest that you look at SPF (and DKIM). Both will reduce the number of spammers that use your domain (over time, in my experience). You could also configure fetchmail not to hand the mail over to localhost, but to a different interface (maybe even a virtual one) and configure amavis/postfix to treat those mails differently. -- Please keep list traffic on the list. Rob MacGregor Whoever fights monsters should see to it that in the process he doesn't become a monster. Friedrich Nietzsche ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace _______________________________________________ AMaViS-user mailing list AMaViS-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/