Postmaster Account being flooded with incomming delievry failure notices due to spoofing
Question asked by Wolf Tombe - 9/12/2015 at 9:34 AM
Apparently some spammer is sending mass emails and spoofing my  "postmaster" email address in their forged email as the sender (i.e., JaneJones <postmaster@mydoman.com>.  This of course is resulting in hundred of thousands of delivery failure notices hammering my postmaster inbox.  Is there anyway (other than disabling my postmaster account which violates RFCs) it to block these?  I'm feeling a bit helpless right now because none of the forged emails are coming from my mail server!  I'm also worried about my domain and postmaster account being labeled as a "spam house" when in reality none of these are within my control to stop.
Any advice will be GREATLY appreciated!

2 Replies

Reply to Thread
Bruce Barnes Replied
Marked As Answer
Sounds like you're being "joe jobbed."  see: https://en.wikipedia.org/wiki/Joe_job
Setup, and enable, DMARC.
Bruce Barnes ChicagoNetTech Inc brucecnt@comcast.net Phonr: (773) 491-9019 Phone: (224) 444-0169 E-Mail and DNS Security Specialist Network Security Specialist Customer Service Portal: https://portal.chicagonettech.com Website: https://www.ChicagoNetTech.com Security Blog: http://networkbastion.blogspot.com/ Web and E-Mail Hosting, E-Mail Security and Consulting
Wolf Tombe Replied
Bruce, Thanks! That is exactly what is happening. I'll setup DMARC right now. I really appreciate the advice! - Wolf

Reply to Thread