[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] Re:Any ideas why spammers can use anyname@xxxxxxxxxxxxxxxx?
- Subject: [cobalt-users] Re:Any ideas why spammers can use anyname@xxxxxxxxxxxxxxxx?
- From: Charlie Summers <charlie@xxxxxxxxxx>
- Date: Wed Jul 31 16:54:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
At 7:16 PM -0400 7/31/02, Charles Teton is rumored to have typed:
> I cut my spam down to a trickle but I still some how get email addressed
> similar to below:
>
> anyname@xxxxxxxxxxxxxxxx
(*sigh*) No, you don't. You get spam with a forged To: header field. Gee,
big surprise there...spammers lie? ;)
> I've enclosed the header from the last spam, maybe this will help:
It will, to show you that the _real_ addressee, that is, the envelope
target, is:
> Received: from fep02-svc.mail.telepac.pt (fep02-svc.mail.telepac.pt
> [194.65.5.201])
> by www.mydomain.com (8.9.3/8.9.3) with ESMTP id XAA30661
> for <info@xxxxxxxxxxxx>; Tue, 30 Jul 2002 23:10:12 +0100
^^^^^^^^^^^^^^^^^
...which I assume is a valid address; and note, no "www" part there at
all. The To: header field:
> To: <Susan@xxxxxxxxxxxxxxxx>
...is a bunch of crap, and isn't relevant in the least to sendmail. (I
thought about forging the To: header field in this mail to show off, but I
was afraid it would screw up some people's mail filters so I didn't.)
I would strongly urge you to search the archives (or check sendmail.org)
to learn how to add the X-Envelope-To: and X-Envelope-From: header fields to
your mail in the sendmail.cf file, so there is no ambiguity about trusting
the To: header field. (Trust me, the To: is about as meaningful as the From:
in a spam email.)
Charlie
--
A virtual chihuahua, gnawing on the pantleg of the annoying and foolish.
It's futile, but I am undaunted.