Results 1 to 4 of 4

Thread: Possible to verify outbound smtp 'from' address?

  1. #1
    gazumping is offline New Member
    Join Date
    Jul 2008
    Posts
    3
    Rep Power
    7

    Question Possible to verify outbound smtp 'from' address?

    Hello,
    In dealing with spambots we are trying to lock down our outbound smtp email transmissions to a given set of domains. E.g. if someone is using the smtp server to send emails, we want to check the 'from' line and verify that the address exists in zimbra or at least the domain is one of ours.
    Is it possible to accomplish this in zimbra or the tools that comprise it?

    Thanks,
    --Christian

    version: Zimbra Community Server 6.0.4
    Last edited by gazumping; 05-05-2010 at 01:34 PM. Reason: zimbra version

  2. #2
    LMStone's Avatar
    LMStone is offline Moderator
    Join Date
    Sep 2006
    Location
    477 Congress Street | Portland, ME 04101
    Posts
    1,367
    Rep Power
    10

    Default

    Not sure why you would need to do this?

    Zimbra's Postfix is not an open relay. You can only send if you auth with credentials or have an IP listed in MTA Trusted Networks.

    Have you added IPs to MTA Trusted Networks? Any compromised accounts on the system? I'd deal with those first...

    Hope that helps,
    Mark

  3. #3
    gazumping is offline New Member
    Join Date
    Jul 2008
    Posts
    3
    Rep Power
    7

    Default

    I think we do have compromised accounts, people love to respond to falsified password requests.
    I posted another thread asking for help in tracing down these compromised accounts. I do have trusted MTA IP blocks and user authenticated smtp.

    Thanks for the quick reply,
    --Christian

  4. #4
    LMStone's Avatar
    LMStone is offline Moderator
    Join Date
    Sep 2006
    Location
    477 Congress Street | Portland, ME 04101
    Posts
    1,367
    Rep Power
    10

    Default

    If you look at the Daily Mail Report you can see which of your mailbox accounts are sending out the most email; the ones that are sending way too much are likely compromised, yes?

    You can then change the password on those accounts and call (by phone!) the "real" end-users to give them their new password.

    I would really, really resist adding IPs to Trusted MTA. The only time we do this is for managed services clients of who have old emailing scanners that don't do auth. We require the client to devote a fixed public IP to the scanner, and we set up their firewall for them.

    Once you get a compromised machine on your Trusted MTA list the chance of getting on RBLs increases significantly!

    Hope that helps,
    Mark

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [SOLVED] Forward outbound eMails to specific address
    By alexcatese in forum Administrators
    Replies: 4
    Last Post: 03-20-2009, 05:47 AM
  2. Replies: 15
    Last Post: 12-02-2008, 05:05 PM
  3. SMTP outbound problem
    By duncan in forum Administrators
    Replies: 0
    Last Post: 01-16-2008, 10:26 AM
  4. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 07:46 PM
  5. Outbound SMTP Question
    By hikenboots in forum Administrators
    Replies: 3
    Last Post: 12-27-2005, 09:00 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •