Koenraad Lelong wrote:
Hi,
My mail-address at work is bombarded with replies on mails I never sent. I tried to analyse this, but the original sender is not the same, so it's kind of a DDOS. Any suggestions what to do ? I could remove that email-address, but that's not a real solution. I think there is nothing I can do, is it ? I thought I could avoid this in the future with DKIM, but that won't work, is it ? Since there is no signature, it can't be verified. Or do configured mailservers check nevertheless ?
If you server is not configured to reject mails that do not pass DKIM then you are out of luck. The quick and dirty way would be to reject all mails with the empty envelope sender for a few days. Then the backscatter wave should have passed and you can accept the bounces again. This will also reject Delivery Service Notifications and some address verify probes, so you should only use it if the effect of the backscatter is worse than the missed real bounces and DSN. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org