I just got a bounce back from an email address. However I didn't send the original email.
Here is the header of the email which was sent to the other party:
Quote:
Subject:
This blend will help you get thinner
From:
"sales" <myaddress>
Date:
Mon, 26 Mar 2007 19:19:17 -0000
To:
<corprestruct@lists.law.duke.edu>
Received:
from 85.139.98.84.in-addr.arpa (unknown [85.139.98.84]) by lawweb.law.duke.edu (Postfix) with ESMTP id 63EA0292603 for <corprestruct@lists.law.duke.edu>; Mon, 26 Mar 2007 14:19:18 -0400 (EDT)
Received:
from [69.6.190.249] (HELO VORQPXFNM) by 85.139.98.84 (CommuniGate Pro SMTP 5.0.11) with SMTP id 39495966 for corprestruct@lists.law.duke.edu; Mon, 26 Mar 2007 19:19:17 -0000
Message-ID:
<02ec01c76fd3$44a009b0$54628b55@85.139.98.84.inaddr.arpa>
MIME-Version:
1.0
Content-Type:
multipart/alternative; boundary="----=_NextPart_000_02E9_01C76FDB.A62015B0"
X-Priority:
3
X-MSMail-Priority:
Normal
X-Mailer:
Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE:
Produced By Microsoft MimeOLE V6.00.2900.2962
Is there anyway of telling what is sending the spam?
Recently, just out of interest I set the 'Mail to nonexistent user' to forward to my email address.
Within an hour I have about 60 emails saying:
Delivery Status Notification (Failure)
This is an automatically generated Delivery Status Notification.
Delivery to the following recipients failed.
and then some email address.
I check out the contents of the message that had been sent and it is some rubbish like:
Up to 500% more volume - Cover her in it if you want
Which, although amusing, i look at the email address that sent the failed email and it is some random email address @ my domain.com which isn't so amusing.
Now I know that someone is just pretending to be from my domain and sending out these emails (unless someone in my office (of 4 people) is secretly a spammer) but yeah I don't particularly want to have my domain name known as being a source of spam and being blacklisted etc etc...
Are negative effects of this a possibility and is there anything i can do about it?
I've gotten several complaints through spamcop in the last several weeks. The headers show the spam mails coming from nobody@ my server and they show the originating IP as my server. The datacenter is threatening to shut me down.
I've looked in the mail queue and haven't found any of the sent spam mails in there (or bounces from them). I am getting bounces into horde that were apparently sent from me.
How do I find which client is sending them? Or maybe the server has been hacked and spam software uploaded somewhere?
Logwatch says I send out about 3k emails each day and that is a ridiculous amount. I use postfix and do not run any sort of relay, even for myself. I have IPB 2.2.2, Wordpress 2.0.4, and Gallery 2.x.
How can I track down where these messages are originating from? Or perhaps I am reading my LogWatch file incorrectly?
Quote:
--------------------- postfix Begin ------------------------
17999281 bytes transferred 2460 messages sent 26 messages expired and returned to sender 145 messages removed from queue
Top ten senders: 24 messages sent by: apache (uid=48): 2 messages sent by: root (uid=0):
I have been getting loads of bounced or blocked emails where someone has been using my domain as the From address.
The from address looks something like this:
vaahlv@mysite.com
There are numerous Cc entries too.
So, email gets sent, blocked as spam and the bounced email gets sent back to me. Part of the reason for this is that I have a wild card under my .virtual mail file (which I have just learnt about).
I'd bought a domain name 2 months ago. It was parked at godaddy until last week when I hosted it on my VPS. After I set up google apps with my domain (I'm not running any MTA), I was shocked to find out that someone has been sending bulk mails using my domain as sender. Everyday, there are 50-100 spam mails being bounced back to my gmail "catch-all" account. These are the ones that are being rejected by the receivers spam-blocker, or being bounced due to incorrect recipient address, I have no idea how many spam messages are actually being delivered.
I checked the originating IP addresses of some of those mails, and most of them seem to be home PCs - most probably zombies in a spam botnet. Many of them are indeed blacklisted with spamcop.net.
I did set my SPF as this (running djbdns): Code: v=spf1 a mx include72google.com, include72googlemail.com -all:3600
It's no use. I'm still receiving bounced spams everyday.
After seeing these spam mails, I checked the domain history. Looks like the domain had been active some 4/5 years ago, until it expired.
I have no idea how long this spoofed spamming had been going on, I only discovered this after I setup google apps for my domain.
I have checked RBL list, and hopefully my domain isn't blacklisted yet. But I'm afraid if this spoofed spamming continues, I might end up getting blacklisted.
What can be done to stop this spamming? Have you experienced anything like this? How did you overcome such nuisance?
I have a domain when we send mail through any email id of this domain to Gmail it goes to spam folder but in yahoo and hotmail it goes into inbox folder.So how i whitelist my domain in gmail so my mails go into inbox.
I have also submitted this require or issue in gmail support but no answer.
I use a web developer using a reseller hosting account. One fine night I found one of my domains disappeared. Great agony at night hours because I very much fear it. Any way after hours of pathetic support chasing I got reply that "some one complained about spam through a lot of domains and mine was one and the domain was suspended. Now after receiving my support request they found it false and so on....
In all it was 5 days down. If some how, I haven't checked it, God knows how long might have been the downtime. I have some 60 domains.
Please advise and have your say on:
1) What regular precaution and check I should perform.
2) I have not received any email for suspension of domain. How to watch in such situation. I incidently checked the site and came to know about its status after some research.
3) My Host was very prompt then the domain registrar. The immediately informed me about the clean status of server use. And I was quite confident of my clean server as I have 10 years with various hosts.
So I request all of you, please must say something on the issue for the sake of people like me who devotedly follow this forum for their survival.
In January I ordered a server with them, knowing that their support isn't the "best".
The server info ended in spam folder, but that isn't their fault I guess. They advertise that every server comes with 2 IPs, however you only get 1. Until you request that 2nd IP. However, when you call them out of working hours, they tell you that you have to pay 135 euro (about 200 USD), great I will wait for tomorrow then. So the day after I called them again. The person I talked with, was very friendly and started to work on it. About 5 hours later I received an email with the second IP information. I added it, but it didn't get assigned. I rebooted the server etc. Still no 2nd IP. It was already 'after working hours' so I had to wait again, because I wasn't going to pay 200$ for an IP. The day after the guy on the phone tells me they assigned me an IP that was already assigned to another customer (lol)..... Ok, so I asked him if I could get a different IP than I was supposed to get. (Now I had to fix my DNS settings also, but o well....). The new IP info arrived in my inbox about 80 minutes after the call this time. After rebooting the server everything ran flawlessly. I manage my own servers, so I didn't contact their support again.
On the 21st of february, I called their administration about cancelling the server (they had a new offer, which suited me better & because I only wanted a fast network for this server, I didn't care about their support), I was told that if I submitted their cancellation form the same day or the day after, It would be taken care of before the end of the month. So I filled it in and sent it to them on the day after (22 february).
Today I called their administration to check if everything went ok (I didn't want to order the new server & pay the old one at the same time). I was told: No, it isn't cancelled. She checked that my email was there & indeed it was sent to them. She then asked me if I could wait a minute, so she could ask someone else what to do. She told me that she would assign me to a sales guy, who would be able to tell me more about it. He told me that the cancellation has to be done X days in advance. Which I did, then he said: It has to be done a month up front. I asked him why I was told that it would be cancelled on the 22 of february, but now I had to cancel it the 1st of february. He said it was a mistake. There was "nothing" he could do (or wanted to do). I don't have the time do anything about it, so I'll let it be and just pay for another crappy month.
Great, now I'm fed up another month with their server. What if I didn't call them today? I would have had 2 servers with them & they would have, the only thing they want: Money.
I've been getting a lot of "Undeliverable" emails sent to my email address. On these messages, the spammer is using my email on the "From" part of the email...... So whenever he sends out spam, the person(s) getting spammed think it's from me..... And the thousands of Undeliverable email error messages are also sent to me.
Is there a way to stop this from Happening? ....... Besides changing my email address?
My friend has been building a myspace page for herself using our old computer and all of a sudden I've found multiple trojans, 1 of which was very tough to get rid of.
Could these trojans be coming from the little dealiemajigs (sp?) she's using to decorate her page?
One of my hosted domains have an email problem, every email account that is hosted on that site, is able to send and recieve email, but when sending to gmail or hotmail, it is delivered as SPAM.
Someone told me it is because this domain doesnt have a MX record at the DNS zone..
What is the sintax for the MX record ? I have enterd A(ddress) and CNAME records, but never MX records.. can anyone tell me how to do it so I can send mail in the way it should be.
i have a vps and although i can send mails without problem from my main root account, sending via any of the child accounts created for customers results in their email being picked up as spam (in hotmail at least).
To clarify, mydomain.com is my main name. Email can send without problem,
customersdomain.com, hosted on the same machine, when sending emails they are picked up as spam. The mx dns entries in the zone file are set (by default to) customersdomain.com. and for all the child domains customer1domain.com. etc.
Do i need to ask the datacenter to add a reverse dns entry for mail.mydomain.com?
Is this an issue with the mx records for the hosted domains? Should i change the hosted domaims mx entry on the customers domains to mail.mydomain.com?
I know the ip isnt blacklisted because exactly the same email goes through when sending from the mydomain.com email addresses.
I was doing a search on google and retrieved some files on it with some sites that should not be available to the public. I investigated the site a little bit and it looked like they are running ASP. I know with Linux servers you can place a .htaccess file which can restrict bots from accessing certain directories, but how can you do it with a windows server running IIS? I would like to get in contact with these companies and let them know about the issues I ran into with their site.
I write this as my site has been down for some 11 hours now and need a way to calm down while I wait for my new host to get my account "up".
I've used shared hosting since 1995 up until just a month ago. I was always happy with shared hosting. Who can beat $5 a month to have your site up and running? I had all the subdomains I needed and I even had cPanel. Tech support was fantastic. My accounts were ALWAYS set up within 2 hours tops. Life is good.
Then a recent .com I built got too popular too fast and one day I found (even though I was at 75% of my allotted bandwidth for the month) the plug pulled on my site because (even though it was a static site - html and images only) I was taking up too many "cycles". Too bad cycles aren't something advertised when selling a site to a customer. They made the big mistake of not offering me a VPS soultion from my pitiful little shared hosting account, or any other alternative. So I left them, I had no choice as I couldn't trust them any more.
I got a VPS account, which I must say is not an easy thing to shop for because how do you know who is good? Forums are not a 100% indicator and I don't know any better so it's a crap shoot really. So I looked for the most important qualities: it had to be a managed account because I don't know my butt from a hole in the ground when it comes to running a server (I'm the kind of customer who will tell you "you handle the server voodoo, and let me worry about the content on it ok?"), and I needed a quick setup because my site was already dead in the water.
I picked my first VPS host and all seemed good. My server was fully running in about 2 hours. Once I got through the growing pains of getting various things configured (which I didn't do I aksed for this to be done via trouble tickets) everything was set. The only issue that cropped up here and there was downtime. So now I'm shopping for my second VPS host. I just spent even more money than at my last host and what has my experience been thus far?
I will admit I signed up around 2.am. because my site went down at 11p.m. at my previous host so I was in full panic mode. I plunked down the cash and got an automated email saying how my account must be "verified" over the phone. Fine I wait up an hour or so and finally fall asleep when no call is received. I wake up around 10a.m. and have another email from the new host saying how they couldn't get in touch with me on my phone to "verify" me. I check my phone. Nope, no missed calls, no messages. WTF? So I call them. They have my correct number. Could their call have just never registered on my phone? Is there a black hole for phone calls?
They "verify" me by making me repeat info already provided when I signed up. I've never had a host do this to me, this is ridiculous and a waste of time on everyone's part. Stop. It's a waste of time. If was going to steal someone's credit card I'd buy something a heck of a lot more exciting than a Unix web hosting account at 2a.m.
They tell me I'll get an email with my account info. Great. I wait and wait and nothing arrives. It's almost 10 hours now since my site has gone dark. I write the company to say where is that email so I can get going? I get a quick response that says new account take 8-24 hours to set up. Where the heck was this mentioned on the site when I signed up? Why is this important fact hidden? I"m spending $90 a month, I guess my business isn't important enough to rate better service. Unless a whole bunch of people just signed up for more expensive plans than me at the same time, why can I not get "set up" faster?
So now I wait. I'm crossing my fingers this host will be great. Felt good to rant, I'm more relaxed.
But with my current host, my incoming e-mails have stopped and have done quite a lot of times, If I send an e-mail to myself from another acount, it gets bounced back.
When I'm searching for hosts, I can't see any info on mailbox allowance.
I'm using Outlook to download all my e-mails.
I don't know why they are stopping and I can't find out from the person who got the host from me, in the past he said something about me having to delete e-mails. But this would come back to mailbox space which no hosts seem to advertise, unless it goes under webs space.
If my mailbox is full or ran out of space, does anybody have any recommendations for a host that offers a good amount of mailbox space.
Another question, am I limited to the amount of e-mails I can send with some hosts? I'll be sending out Newsletters to 600+ people each month.
Microsoft Windows Server 2008 R2 Service Pack 1 Panel version 11.0.9 Update #59, last updated at Oct 3, 2013 02:06 AM MailEnable version 5
I see in the plesk documentation that the screen to enable SPAM filtering for an individual there is an option to "Move spam to the Spam folder". I don't see that option so I am wondering if it is only available on some versions of Plesk, or in combination with certain mail servers. How to make that option available?
