how can i prevent this...

TrialUserXP · Post by **TrialUserXP** » Thu Jun 22, 2006 5:45 am

g'day,

how can i prevent those spoof mails [mail from: doesn't exist in my domain], i've switched on 'smtp authentication....

right now, if user is sending from mail client, it will request for authentication but the log below seems wasn't from a mail client...

any guru can give me a clue?

thank you in advance...

=========================
06/20/06 00:14:26 SMTP-IN BA1E1C38D09A4281814A6EAB2321451A.MAI 560 218.14.24.156 220
mail.mydomain.com ESMTP MailEnable Service, Version: 0-1.75- ready at 06/20/06 00:14:26 0 0
06/20/06 00:14:28 SMTP-IN BA1E1C38D09A4281814A6EAB2321451A.MAI 560 218.14.24.156 HELO helo
my-tomato 250 Requested mail action okay, completed 43 16
06/20/06 00:14:29 SMTP-IN BA1E1C38D09A4281814A6EAB2321451A.MAI 560 218.14.24.156 MAIL mail from:
<SQ@mydomain.com> 250 Requested mail action okay, completed 43 30
06/20/06 00:14:30 SMTP-IN BA1E1C38D09A4281814A6EAB2321451A.MAI 560 218.14.24.156 RCPT rcpt to:
<debbidchris@mydomain.com> 550 Requested action not taken: mailbox unavailable or not local 66 37
=============

someone_else · Post by **someone_else** » Thu Jun 22, 2006 7:14 am

You can implement DomainKeys on your domain, and set up a policy that says your domain signs all its mail. That way, spoofed mail claiming to come from your domain will fail authentication (since it will obviously lack your signature).

TrialUserXP · Post by **TrialUserXP** » Thu Jun 22, 2006 7:30 am

g'day,

thx for yr adv...

right now, when i try to open dkeyevent Setup, the program prompted:
'run time error 5'...

it works fine this morning...

TrialUserXP · Post by **TrialUserXP** » Fri Jun 23, 2006 4:00 am

uninstall it and reinstall again..