How can I prevent spam emails from using my address as the sender?

  • Thread starter Thread starter Ivan Seeking
  • Start date Start date
Click For Summary

Discussion Overview

The discussion revolves around the issue of email spoofing, where spam emails appear to be sent from a user's own email address. Participants explore the nature of this phenomenon, potential causes, and experiences related to it.

Discussion Character

  • Exploratory
  • Technical explanation
  • Debate/contested

Main Points Raised

  • One participant expresses concern about receiving spam emails that show their address as the sender, suspecting it might be a hacking issue.
  • Another participant shares a personal experience at work, mentioning that their IT group addressed similar issues of spoofing affecting multiple employees.
  • A participant explains that SMTP does not authenticate senders, allowing anyone to claim to be another person in the sender field.
  • There is a technical illustration of an SMTP message exchange, demonstrating how sender information can be manipulated.
  • Some participants note that legitimate service providers typically prevent sending emails with mismatched sender addresses, while those running their own mail servers may not have such restrictions.
  • Discussion includes the reasoning behind spammers using legitimate addresses, such as bypassing spam filters that allow messages from known contacts.

Areas of Agreement / Disagreement

Participants generally agree on the mechanics of email spoofing and its implications, but there is no consensus on specific solutions or preventative measures to address the issue.

Contextual Notes

Limitations include the lack of detailed solutions for preventing spoofing and the dependence on the configurations of various email service providers.

Ivan Seeking
Staff Emeritus
Science Advisor
Gold Member
Messages
8,252
Reaction score
2,664
Every once in awhile I get a spam email that shows me as the sender. At first I thought this may be a hacker issue and someone is using my computer, but no one I know gets spam from me, so I assume this is some sort of trick. Is it a trick, and if so, how do I block the sender?
 
Computer science news on Phys.org
This happened to me at work.

I have been sending myself some pretty good porn over the years. lol

The IT group stopped it but I don't know how they did it. I work for a huge company and a lot of other employees had the same thing happen to them. No one that any of us knew ever got an email from us, so I wouldn't worry about it unless it takes over your inbox.

I till check my local IT guy for you for a possible fix.

I checked with my IT guy and what has happened is that your email has been spoofed. Below is a link to a forum that might help. If not just search google for spoofing.

http://www.bluehostforum.com/showthread.php?t=132

Thanks
Matt
 
Last edited by a moderator:
Thanks, Matt.
 
SMTP does not authenticate senders. You can say you are anybody.
 
Sorry, I don't quite understand your meaning here.
 
Ivan Seeking said:
Sorry, I don't quite understand your meaning here.
Code: 
S: 220 smtp.example.com ESMTP Postfix
C: HELO relay.example.org
S: 250 Hello relay.example.org, I am glad to meet you
C: MAIL FROM:<bob@example.org>
S: 250 Ok
C: RCPT TO:<alice@example.com>
S: 250 Ok
C: RCPT TO:<theboss@example.com>
S: 250 Ok
C: DATA
S: 354 End data with <CR><LF>.<CR><LF>
C: From: "Bob Example" <bob@example.org>
C: To: Alice Example <alice@example.com>
C: Cc: theboss@example.com
C: Date: Tue, 15 Jan 2008 16:02:43 -0500
C: Subject: Test message
C:
C: Hello Alice.
C: This is a test message with 5 header fields and 4 lines in the message body.
C: Your friend,
C: Bob
C: .
S: 250 Ok: queued as 12345
C: QUIT
S: 221 Bye
{The server closes the connection}

This is what an SMTP message (Email Request) looks like. I could put obama@whitehouse.gov in the MAIL FROM and send it to you.
 
Okay, thanks, that definitely explains things. Given that I keep my antivirus, antispam, antispyware, etc, up to date, I didn't think the problem was on my end.
 
As David described, you can put anything you want in the sender field.
Legitmate service providers will not normally let you send out mail which has a sender that doesn't match, but if you run your own mail server you can do anything.

The reason they used your address is that some mail server check that the sender address of an incoming message is valid, and block any spam with a fake address. Also some systems automatically let through any messages that have come from you, so setting the sender to the recipient has a higher chance of getting through.

The problem comes when they send it to someone else, we get complaints from people that we have spammed them, when a spammer has just used one of our addresses as a sender.
 

Similar threads

Text from scammer originating from email address rather than phone
  • · Replies 8 ·
Replies
8
Views
2K
Possible to Get Malware by Just Opening an Email?
  • · Replies 32 ·
2
Replies
32
Views
7K
Asked to Verify email when Unsubscribing from unsolicited e-mails
  • · Replies 12 ·
Replies
12
Views
5K
Anyone Getting "Realistic" Fake Emails?
  • · Replies 67 ·
3
Replies
67
Views
9K
How do spammers get our names and our email IDs of "me and my friend"?
  • · Replies 21 ·
Replies
21
Views
5K
Can Emotet Spread Without Using Outlook?
  • · Replies 6 ·
Replies
6
Views
2K
Using Word for Equation Editing
  • · Replies 15 ·
Replies
15
Views
2K
Why is my blocked senders function not working in Outlook 2003?
  • · Replies 1 ·
Replies
1
Views
2K
Solve Spam & Unsubscribe Issues: Tips & Tricks
  • · Replies 34 ·
2
Replies
34
Views
4K
How to get Hackathon sponsors?
  • · Replies 21 ·
Replies
21
Views
2K