[Exim] Preventing forged From: headers (exim 3.36)

Top Page
Delete this message
Reply to this message
Author: Robert Lister
Date:  
To: exim-users
Subject: [Exim] Preventing forged From: headers (exim 3.36)
Hi,

I am getting a lot of spam recently that is making it to my mailing lists,
because the From: header is forged as coming from my domain, which is on
the mailing list's allowed whitelist of domains to accept mail to send to.

I have to have domain whitelists because many of the entries on the
mailing list are local exploders for each site, so for this list I can't
have specific entries, but people need to be able to post to the list from
a specific domain even though they are not subscribed to the list.

Problem is when a spam comes in:

From: some.list@???
To: some.list@???

The From: header is a permitted domain on the whitelist, so the spam goes
to the entire list.

Is there anyway I can configure exim 3.36 only to accept mail "From:"
my local_domains ONLY from hosts permitted in host_accept_relay?

I.e. if somebody attempts to forge a message From my domain and it wasn't
generated locally, bin it?

I kinda think you should be able to do this using a filter, and at the
moment have specific recpients in there, but is there a more global way of
doing it?

Any help would be most appreciated.


Rob



--
Robert Lister    -        robl@???    -    http://www.lentil.org