Spammer using my domain name - help?

[Cienja]

So, spam is being sent using my domain name on the "from" email address. The name is random (i.e., Joe Smith) and the "from" email address name is random (i.e. smarty23@mydomain.com). I found this out by all the rejected emails being returned to my catch-all email account.

What can I do to stop this? Anything?

Thanks!

 

[n0cmonkey]

First, find out if they are using your mailservers to send the email. If they are, you need to tighten up the security on your mailserver.

If not, nothing you can do, welcome to the club. 😛

 

[theevilsharpie]

Set up an SPF and a Sender ID record in your DNS zone.

 

[imagoon]

There is nothing to prevent this as long as the email system exists as designed. Things like SPF and Sender ID don't stop them from sending, it just tells the receivers that it is crap from the get go.

 

[Red Squirrel]

Yeah they're probably spoofing it. Is it being sent to an email on that domain? What I suspect a lot of them do is just randomize using the domain they're sending to. So nobody else but you is probably getting mail from your domain. It's still far possible that they are spoofing and sending to all sorts of other addresses though. This is why DNS checking is important. An antispam app will check that the MX record of that domain is actually conistent with the IP of the SMTP server that is sending that email. (or something to that extent)

I actually get spam from my "Administrator" that I need to give my email password due to technical issues. I always lol at those because I AM the administrator of the email service. Try harder and do it on my gmail only, or something. 😛

 

[RebateMonger]

Unless it's one of your computers that's sending the original mail, there's nothing you can do about it. As noted, you can try to help others identify that the emails aren't legitimate by creating an SPF record for your Domain. But, realistically, it doesn't help much.