Block fake "From: " emails

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
7224jobe
Advanced member
Advanced member
Posts: 118
Joined: Sat Sep 13, 2014 1:55 am
ZCS/ZD Version: 8.6.0_GA_1237.RHEL6_64

Block fake "From: " emails

Postby 7224jobe » Fri Jan 11, 2019 12:08 pm

Hello everybody,
I read and applied some antispam / antispoofing suggestions from zimbra wiki, but there is a spoofing situation that I can not still block. Here is an example:

Code: Select all

root@remoteserver: telnet zimbraserver.com 25

helo spamtest
250 zimbraserver.com
MAIL FROM: spammer@live.com
250 2.1.0 Ok
RCPT TO: userA@zimbraserver.com
250 2.1.5 Ok
DATA
354 End data with <CR><LF>.<CR><LF>
From: User B <spammer@live.com>
To: User A <userA@zimbraserver.com>
Subject: Please reply!!!

Reply to me!


User A in his Zimbra webmail sees a mail from "User B", only if he moves his mouse cursor over "User B" label can notice that the email address is "spammer@live.com" instead of "userA@zimbraserver.com". Even if he replies to the email only "User B" label appears.
So is there a way to enforce a match between MAIL FROM: telnet command and "From:" mail header?


Return to “Administrators”

Who is online

Users browsing this forum: No registered users and 13 guests