Excellent answer - FAR better than Outlook even for small orgs.
________________________________ From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Tuesday, August 18, 2009 10:28 AM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL It's not a rule at all. This is in ESM. You add *...@domain.com to the list under Sender Filtering. Sender Filtering is a tab under Global Settings, Message Delivery. I would also recommend "accept messages without notifying sender of filtering". And make sure to enable sender filtering on the SMTP VS. From: Chyka, Robert [mailto:bch...@medaille.edu] Sent: Tuesday, August 18, 2009 1:19 PM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL Do you just add a rule with your domain listed? ________________________________ From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Tuesday, August 18, 2009 1:16 PM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL Absolutely, that's what the OP asked about and that's what I answered about. From: Chyka, Robert [mailto:bch...@medaille.edu] Sent: Tuesday, August 18, 2009 1:10 PM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL On Exchange 2003 too? ________________________________ From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Tuesday, August 18, 2009 1:01 PM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL Exchange's sender filtering can also block inbound Internet mail from your own domain. Carl From: Senter, John [mailto:john.sen...@etrade.com] Sent: Tuesday, August 18, 2009 8:54 AM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL What inbound mail gateway do you have? Our gateways have a rule not to except inbound e-mail where the sender address is our mail domain. From: Vincent DeSouza [mailto:vincent.deso...@nbkcapital.com] Sent: Tuesday, August 18, 2009 5:41 AM To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL Implement SPF checks within your Antispam solution and have your DNS updated accordingly. This will get rid of this type of junk. Regards, Vincent From: Markko Meriniit [mailto:markko.merin...@pria.ee] Sent: Tuesday, August 18, 2009 12:24 To: MS-Exchange Admin Issues Subject: RE: BLOCKING SPOOFED INTERNAL EMAIL You could look up info about the "Sender ID". Maybe implementing it helps. Markko Meriniit -----Original Message----- From: Murray Freeman [mailto:mfree...@alanet.org] Sent: Thursday, August 06, 2009 12:28 AM To: MS-Exchange Admin Issues Subject: BLOCKING SPOOFED INTERNAL EMAIL Lately we're getting a lot of sp*m that appear to be coming from our own staff. It's easy to spot, but our sp*m filter isn't catching them. The reason they are easy to spot is the "FROM" has the full address as oppossed to just the display name. Is it possible to create an Outlook rule to block these? Is it possible to create a rule at the Exchange Server level? And finally, if the rule works, will it impact email created in OWA. We're using Outlook 2K3, Exchange 2K3 and Windows Server 2K3. Murray