Invalid from headers

anand

• July 02, 2014 00:25

Hi, We face this issue very frequently where our users use a different FROM address than what is hosted/ their own domain. Example: their domain is example.com, and using SMTP authenticated session they can send mail using FROM as example.net. Is there a way to block this ? Something in exim, which checks the from header, and sees if its a domain hosted by the server, otherwise reject the mail ? Thanks

• 

  SS-Maddy

  • July 02, 2014 05:46

  Yes, SPF is an effective way to defend this type of issues. You can enable it for your domain

  0
• 

  anand

  • July 02, 2014 05:54

  How will SPF stop my users to use invalid FROM addresses ?

  0
• 

  SS-Maddy

  • July 02, 2014 06:27

  SPF will check and confirm whether the mail is originated from the server where it is hosted. The issue appears to be of spoofing nature and I think the emails you see are the bounced ones. To know for sure the mail headers need to evaluated. SPF is an effective tool to defend spoofing to a great extent.

  0
• 

  anand

  • July 02, 2014 06:32

  You want me to check SPF for self hosted domain ? Not sure if its making any sense. I want to stop outgoing mails with invalid FROM addresses.

  0
• 

  cPanelMichael

  • July 02, 2014 14:51

  Hello :) The SPF record that you configure in cPanel is only going to matter to remote mail servers. It won't prevent your email users from spoofing the "FROM" field. The following thread provides some solutions: Outgoing Email With Spoofed From Address Thank you.

  0
• 

  anand

  • July 02, 2014 23:46

  This looks exactly like what I was looking for, thanks :) Will try and share if any issues arise.

  0

Please sign in to leave a comment.