Getting bounced emails that I did not send.

Getting bounced emails that I did not send.
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Getting bounced emails that I did not send. Stan Hilliard 05-17-2008
Posted by Stan Hilliard on May 17, 2008, 1:05 am
If you were  Registered and logged in, you could reply and use other advanced thread options
For the past few weeks I have been getting a lot of bounced emails
that I did not send. They come to both my address and my wife's. They
come in spurts. Today I received about 70 in one hour. Then it
stopped. It will probably happen again tomorrow.

What is happening. Is there a page where this problem is described?

Stan Hilliard

Posted by Paul Adare on May 17, 2008, 1:09 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Sat, 17 May 2008 00:05:59 -0500, Stan Hilliard wrote:

> For the past few weeks I have been getting a lot of bounced emails
> that I did not send. They come to both my address and my wife's. They
> come in spurts. Today I received about 70 in one hour. Then it
> stopped. It will probably happen again tomorrow.
>
> What is happening. Is there a page where this problem is described?

Someone who has you and your wife in their address book is infected.
There's really not much you can do about it.

--
Paul Adare
http://www.identit.ca
CPU: A juvenile way of telling your dog he missed the paper.

Posted by VanguardLH on May 17, 2008, 2:24 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
"Stan Hilliard" wrote in

> For the past few weeks I have been getting a lot of bounced emails
> that I did not send. They come to both my address and my wife's. They
> come in spurts. Today I received about 70 in one hour. Then it
> stopped. It will probably happen again tomorrow.
>
> What is happening. Is there a page where this problem is described?
>
> Stan Hilliard

How do you stop someone from claiming your e-mail address is theirs?
You can't.

How to you stop admins from misconfiguring their mail hosts to reject
undeliverable e-mails DURING their mail session with the sending mail
host instead of accepting the e-mail, ending the mail session, and then
assuming the return-path (sender's e-mail address) is valid that the
sender entered there?
You can't.

Until whomever usurped your e-mail address gets tired of using it or
until e-mail admins figure out how to properly configure their mail
hosts, you will continue getting these misdirected bounces.

Misdirected bounces are spam and can be reported to blacklists, like
SpamCop. Maybe if a mail service gets blacklisted then they might
decide to fix their misconfigured server. A reporting account at
SpamCop is free. You can use their web form to submit these misdirected
bounces (also called backscatter) to their blacklist. They will send an
abuse report to the e-mail provider, too.

Posted by Stan Hilliard on May 18, 2008, 6:20 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

>"Stan Hilliard" wrote in
>
>> For the past few weeks I have been getting a lot of bounced emails
>> that I did not send. They come to both my address and my wife's. They
>> come in spurts. Today I received about 70 in one hour. Then it
>> stopped. It will probably happen again tomorrow.
>>
>> What is happening. Is there a page where this problem is described?
>>
>> Stan Hilliard
>
>How do you stop someone from claiming your e-mail address is theirs?
>You can't.
>
>How to you stop admins from misconfiguring their mail hosts to reject
>undeliverable e-mails DURING their mail session with the sending mail
>host instead of accepting the e-mail, ending the mail session, and then
>assuming the return-path (sender's e-mail address) is valid that the
>sender entered there?
>You can't.
>
>Until whomever usurped your e-mail address gets tired of using it or
>until e-mail admins figure out how to properly configure their mail
>hosts, you will continue getting these misdirected bounces.

Are you saying that there is a correct way for admins to configure
their email hosts that can prevent thieves from steeling my address
from there? I ask this because I have a website and 7 or 8 pop3 mail
addresses with a hosting service. The bounce-backs seem to cover all
of my addresses - which makes me suspect that the thief got the
addresses from that server -- others would not have the whole set in
their address books.

If there is such a configuration could you please explain the specific
steps that an admin would go through to implement it? I want to be
able to ask the right questions of my provider. My website and pop3
are hosted on a server with a Windows OS.
Stan Hilliard

>Misdirected bounces are spam and can be reported to blacklists, like
>SpamCop. Maybe if a mail service gets blacklisted then they might
>decide to fix their misconfigured server. A reporting account at
>SpamCop is free. You can use their web form to submit these misdirected
>bounces (also called backscatter) to their blacklist. They will send an
>abuse report to the e-mail provider, too.


Posted by VanguardLH on May 18, 2008, 9:57 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
"Stan Hilliard" wrote in

>
>>"Stan Hilliard" wrote in
>>
>>> For the past few weeks I have been getting a lot of bounced emails
>>> that I did not send. They come to both my address and my wife's. They
>>> come in spurts. Today I received about 70 in one hour. Then it
>>> stopped. It will probably happen again tomorrow.
>>>
>>> What is happening. Is there a page where this problem is described?
>>>
>>> Stan Hilliard
>>
>>How do you stop someone from claiming your e-mail address is theirs?
>>You can't.
>>
>>How to you stop admins from misconfiguring their mail hosts to reject
>>undeliverable e-mails DURING their mail session with the sending mail
>>host instead of accepting the e-mail, ending the mail session, and then
>>assuming the return-path (sender's e-mail address) is valid that the
>>sender entered there?
>>You can't.
>>
>>Until whomever usurped your e-mail address gets tired of using it or
>>until e-mail admins figure out how to properly configure their mail
>>hosts, you will continue getting these misdirected bounces.
>
> Are you saying that there is a correct way for admins to configure
> their email hosts that can prevent thieves from steeling my address
> from there? I ask this because I have a website and 7 or 8 pop3 mail
> addresses with a hosting service. The bounce-backs seem to cover all
> of my addresses - which makes me suspect that the thief got the
> addresses from that server -- others would not have the whole set in
> their address books.

No, what I said is that no one, not even a mail server, knows who sends
an e-mail unless they are connected to the sending mail host. Every
host knows the IP address of who connected to it. During a mail session
between sending and receiving mail hosts, the receiving mail host only
knows at that time who is sending the e-mail message. It is during that
mail session that the receiving mail server should reject an e-mail if
it is undeliverable. Why? Because the rejection goes to the sending
mail host currently connected to the receiving mail host. If the
receiving mail host accepts an e-mail, the mail session is over. Then
when the receiving mail host discovers that the e-mail is not
deliverable, what does it have to go by? It isn't connected to the
sending mail host anymore. It has to use the return-path headers in the
e-mail - but those headers are added by the sender. That means the
sender can specify whatever they want in the header section of the
e-mail. It is *data* that is part of the message sent during the DATA
command. They are NOT added by the sending mail host. So the receiving
mail host only has the sender-specified headers to send back the
non-delivery e-mail. So anyone claiming to own your e-mail address and
puts that e-mail address in the "headers" will get used by the
misconfigured receiving mail host that rejects AFTER the mail session is
already over. They can only send the non-delivery report to the e-mail
address in the headers. However, if they had rejected the e-mail DURING
the mail session with the sending mail host, the receiving mail host
never has to issue a non-delivery report. The sending mail host gets
the rejection and notifies the sender of the problem.

Similar ThreadsPosted
Does Norton AV send emails ? December 14, 2006, 12:05 pm
IE Send Mail September 20, 2005, 4:42 pm
Where to send fraud e-mails? September 21, 2005, 10:32 pm
Re: AIM Send out random messages May 26, 2005, 5:05 pm
Re: AIM Send out random messages May 26, 2005, 6:12 pm
Send email thru excel December 29, 2006, 10:16 am
How can you send 'malware' over port 443 to mywebserver ? June 19, 2005, 7:47 pm
I am looking for the classic "Send Keys" program May 14, 2008, 2:55 pm
Send current user token to IIS server August 25, 2006, 7:37 am
Scaperl: send handcrafted packets and sniff November 6, 2006, 7:00 am

The site map in XML format XML site map

Contact Us | Privacy Policy