Skip to main content

External emails from and to the same email address

Comments

3 comments

  • cPRex Jurassic Moderator
    Hey hey! The short answer is that there is no way you can completely stop this type of activity. The longer answer is that you can ensure your local DNS is setup to help prove legitimate emails from your domain are authentic, which will help other be blocked in the future. You can also adjust your server to be more strict about the emails that it accepts. We have some additional detail in our article here about both these options:
    0
  • Arvy
    Hello, yes, the DNS is set up, with DKIM, DMARC, SPF (with "-all") and so, to normal situations (server to server, delivery). But in this case is not a real mail server, is a virus/trojan that connects directly to the MX server to send a message directly to the user. I was looking for a way to create a SpamAssassin rule or ACL to block if from=to and originating IP is not the local server (or a valid domain's MX). Thanks.
    0
  • cPRex Jurassic Moderator
    You might find the discussions here helpful/interesting:
    0

Please sign in to leave a comment.