Recently, spoofed e-mails from accounts claiming to be from my domain have been sent by a Russian online pharmacy selling Viagra and other such stuff.
In an attempt to slow this traffic I place SPF records on all my domain accounts such that my DNS records will declare loudly where the mail is authorised to originate from.
Despite the fact that the domain has an SPF record and despite the fact that the incoming mail servers can now check whether the mail comes from an authorised server, the bloody idiots who recieve the mail and who now know that it didn't come from me send the mail back to... guess where??? Yep, you got it MY DOMAIN!!! where it didn't come from in the first place!!
SPF records ought to be mandatory and built in to the system so that all incoming servers check the record and immediately suppress the mail with no further ado.
No comments:
Post a Comment