![[SpamCop.net - protecting the internet through technology]](http://news.spamcop.net/newlogo.jpg)
[SpamCop-List] Re: Domain Name Hijacked to Send Spam
Garen Erdoisa
scamper at trisk.com
Wed Apr 26 19:03:29 EDT 2006
Glowingdome wrote:
> Hi All,
> This is my first visit here and I hope that I am not repeating a
> previous post. I did a couple of searches and didn't find a similar
> question.
>
> It seems my domain name has been hijacked and used to send mass spams. I
> am getting message undeliverable emails constantly. Can I send these to
> SpamCop using the normal spam reporting process or is there a special
> way to report this. I don't want it to appear like I am reporting myself.
>
> TIA,
> George
>
I recommend that you visit http://www.openspf.org/ which has information
on how to help reduce and/or prevent this type of forgery.
SPF or (Sender Policy Framework) is a protocol that lets you publish via
a DNS record what your outgoing mail servers are, so that other mail
servers when they receive a mail claiming to be from your domain, can
lookup your SPF record, and if your SPF record doesn't list the IP, the
mail server can then safely directly reject the message as a forgery
during the SMTP transaction.
For those mail administrators that don't check the SPF record, you can
just refer them to your SPF record if they complain to you about
receiving a forged mail.
Also, if your domain name is under such attack, I would suggest putting
up an Administrative Alert notice on your main website indicating the
activity.
There are also methods such as Domain Key Signatures that you can adopt.
They don't prevent attempted abuse, but they do make it easier to verify
the authenticity of a message if you make use of them. The best tactic
is to use both methods. SPF and Domain-Keys.
--
Garen
More information about the SpamCop-List
mailing list