Hello. I am running a Fedora Core 4 server with Sendmail 8.13.6, Procmail and SpamAssassin 3.0.6.
My users have been receiving a LOT of spam which is spoofed to appear as if it comes from the user's own email address.
For example, user
john@website.com receives email which appears to be FROM
john@website.com.
Is there any way to configure Sendmail/Procmail to reject all mail in which the FROM line contains the address of an email account on this server?
In other words, if the FROM email address matches any of the email accounts set up on this server and the message did not originate from this server, the email should be rejected, since mail would NEVER originate from these users outside this server, and this would be a 100% foolproof spam indicator.
If possible, it should be rejected before the entire message is received, possibly at the point of the smtp "MAIL FROM:" command. Something like a User Unknown error would probably do the trick.
Is this a bad solution? Am I missing something obvious?
Even better and simpler would be this solution:
if the
sender's domain name is hosted on this server and if the message did not originate from this server (ip address), reject the email.
Is this the whole point of SPF (
http://openspf.org)?
Thank you!
Krasl