Your own domain is being spoofed and the return, sender and from are all being used to bypass TMDA's checking.
Sadly this was such a growing concern to me las year I added Spam Assassin to my server. Last year in Jan TMDA was holding around 7000 spam messages a day from my mail box. Over the year the number of breaches grew to around 200 a day. It's inevitable that SPAMMERS will look at TMDA as a tool that needs circumventing, just as they did with Sendmail. Remember once we need only reject relay of messages, then a dialup through RBL or reject something that didn't resolve. Only took them a few months to change their behavior to beat those process. TMDA is now well known to spammers and the BIGGEST and BESTEST of the spammers will be working on circumvention methods. TMDA developers now need to look at what methods of circumvention are being applied and work on how to beat those. Something that TMDA developers appear not to have really taken on board in perhaps a blind faith that what worked 2 or more years ago can't be beat. Sadly not the case. Since installing SPAMASSAISSIN processes that operate before TMDA, my quarantine has dropped to around 20 a day. So SA is rejecting about 8000 messages a day just to my personal mail box. Impressive huh! I still get around 2-10 SPAMs a week thet get through SA and TMDA to my mail box. Most are Chinese electrical gadget sellers who have farmed my addresses from privet we hosts. So I'll be dumping a few subscriptions over the next few weeks. >but anyways, is there a way to prevent people spoofing headers somehow? Yeah! Get a gun, go around and shoot the spammers! You can't prevent someone outside your control doing something :) At 02:46 PM 7/01/2008, you wrote: >i do have [EMAIL PROTECTED], but i though tmda would look at >"Sndr", not "From", as From: is really easy to spoof > >but regardless, is there a way to prevent this? for this year, i've >start getting a lot of spam even through tmda :( i'll show you other >examples later as i deleted them :( _____________________________________________ tmda-users mailing list (tmda-users@tmda.net) http://tmda.net/lists/listinfo/tmda-users
