hello all, I'm back to mine your knowledge again...:) I've got relay set only for addresses I allow. Spammers are still bouncing mail off my server. Here's a line from the log that concerns me, I'm curious how it's done:
20020920 044433 127.0.0.1 SMTP (1768) 250-ns1.skynet.ne.jp Hello [EMAIL PROTECTED] [200.42.210.151], pleased to meet you This portion: adsl-210-151.tricom.net [200.42.210.151] is the reverse lookup record of my MX record, mailtest.enelpunto.net. My question is: how is a spammer able to put that in the commands? Is it by simply putting it as their email "from" address in a message? Also, how do I block something like that w/out killing my SMTP, since that's it's public IP address? Or, is this a completely legitimate line and I just don't understand the SMTP process well enough yet??? FYI, we are purchasing Declude Junkmail...but you guys don't know what bureaucracy is until you've worked down here (Dominican Republic). It's approved, but I'll be lucky to have it in my hands by December!! As always, thanks for sharing. V�ctor Amram Disclaimer_BNCEXTMAIL_Out To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
