add mycompany.com to blacklist
Printed From: LogSat Software
Category: Spam Filter ISP
Forum Name: Spam Filter ISP Support
Forum Description: General support for Spam Filter ISP
URL: https://www.logsat.com/spamfilter/forums/forum_posts.asp?TID=6212
Printed Date: 04 July 2025 at 9:07pm
Topic: add mycompany.com to blacklist
Posted By: Stupid
Subject: add mycompany.com to blacklist
Date Posted: 23 August 2007 at 9:32am
|
I have seen quite a few spam with FROM: sehrfhas@mycompany.com to RealName@mycompany.com slip through even though I have "Reject if From Domain = To Domain" turned on. Since my SFI is receiving only, can I add mycompany.com to the blacklist domain? |
Replies:
Posted By: Desperado
Date Posted: 23 August 2007 at 3:26pm
|
I would suggest mailto:*@mycompany,com - *@mycompany,com in the FROM Black list as I am not sure if SF wil see the actual domain it comes from or the from addresses. I seem to have better luck with this BUT the from is being forged so this may not work either. ------------- The Desperado Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |
Posted By: Stupid
Date Posted: 23 August 2007 at 4:04pm
| *@mycompany.com thing doesn't even pass RegEx. I tried already. |
Posted By: LogSat
Date Posted: 23 August 2007 at 7:29pm
|
Please note that SpamFilter acts upon the "real" email address specified in the email. This is often referred to as the "Envelope" address, or the "Return-Path" address. It is the email address that is provided by the sender's server in the "MAIL FROM" SMTP command. SpamFilter logs this address in the following header: X-SF-RX-Return-Path: <HYPERLINK "mailto:someone@test.com"someone@test.com> Also note that the "From:" address displayed in most email clients can be different than the above address. This latter address is specified in the "From:" header in an email, and is only used by email clients to display any email address the sender wants. That said, rather than a blanket "blacklisting" of your own domain, you may want to implement SPF (Sender Policy Framework - www.openspf.org) for your domain. This will allow you more flexibility as it lets you specify via DNS which IPs are authorized to send emails on your behalf. This will still allow you to receive emails sent from your own domain, but will let you specify which hosts are allowed to do so. ------------- Roberto Franceschetti http://www.logsat.com" rel="nofollow - LogSat Software http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP |
Posted By: Stupid
Date Posted: 24 August 2007 at 9:26am
|
I do have SPF implemented. Why doesn't SFI look at the From address? It would be such a nice feature I think. I get at least two questions a week about why someone would send themselves spam. |
Posted By: mbrusl
Date Posted: 24 August 2007 at 3:55pm
Does your SPF record in your DNS look something like below? If it does not, then maybe that could be part of the problem. TXT Michael |
||||
Stupid wrote:Posted By: LogSat
Date Posted: 24 August 2007 at 7:52pm
|
The address in the "From" email header can be different from the one in the "MAIL FROM". Legitimate emails do use different addresses. Basing some of the filters on the "From" address would cause too much valid emails to be stopped, so this request cannot be implemented, sorry.
------------- Roberto Franceschetti http://www.logsat.com" rel="nofollow - LogSat Software http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP |