Remove the anonymous email sender

Steen Pedersen Ementor

One of the major problems with SPAM and viruses is that the sender can easily hide. If it was possible somehow to remove or flag the emails from anonymous senders a lot of the problems caused by SPAM and viruses would disappear. There are several quite easy ways to do this. One of them is "Sender Policy Framework" - SPF (earlier known as Sender Permitted From). With SPF there is no change to the SMTP standard. SPF is an addition to the DNS. To support SPF the mail receiving gateways needs to be updated.

It is possible, just by the header of an email, to get the domain name in the from field and the sender's IP address. Compare this information with the IP addresses listed in the SPF in the DNS for this domain. Does the IP address sending the email match one of the IP addresses "allowed" by SPF to send email from the domain? So the mail gateway only needs to receive the first few hundred of bytes of an email to determine if the sender is legal or anonymous.

Some of the features which are possible when using SPF-compliant mail gateways:

  • If you make a prioritized mail handling: receive email fast from the "good" and known SPF senders and very very slow from the anonymous senders
  • Mark the anonymous emails as "not trusted source"

There are several things which are needed to make this a success.

Demonstrating SPF will be a part of the presentation.

Poll

Do you use the same password(s) across multiple websites?
I use the same password for all sites
I have a number of passwords but use the same for some sites
I use a different password for each site
I don't sign up to any sites that require a password

Leave a comment
View 4 comments
Jobs Recruit Sidebar

VB100 certification

VB100 This month VB's test team put 26 products to the test on Windows Server 2008. John Hawes has the full results.
See full results.
Virus Bulletin currently has 190,944 registered users.