Backscatter

By Roger on October 16, 2007 11:00 PM | | Comments (0) | TrackBacks (0)

One of our users is a victim of backscatter and has been reporting them to the abuse mailbox at work.

Backscatter is the unsolicited mail that occurs when a spammer sends out email as you and poorly configured email server return all manner of notices to you. Its funny to watch the Barracuda spam firewall spamming the employee with the message Undeliverable: **Message you sent blocked by our bulk email filter** and an RFC rejection. Along with that is the usual 'out of office' and non-deliverable reports.

I figured there really isn't much we can do. I decided that maybe its time to adjust the SPF record and change it from a ~all to a -all setting. Surprise, Surprise, I found that there was not a SPF record for the domain in question. I'm not sure if I dropped the ball on that or if our external DNS provider did something crazy again. At any rate, that is getting fixed but given how few people use the SPF record, I dont think it will be a lot of help.

Categories

Spam

Tags

0 TrackBacks

Listed below are links to blogs that reference this entry: Backscatter.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/608

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on October 16, 2007 11:00 PM.

Article: Infosec on the Cheap was the previous entry in this blog.

NASA Bans IE? is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can reach me at blog...@infosecblog.org
Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.1

Search