Your browser is obsolete!

The page may not load correctly.

  • add to favourites
    Add to Bookmarks

Looking under spam's "hood"

Read: 227 Comments: 0 Rating: 7

If you have an anti-spam up and running, it is likely to prevent unsolicited messages from appearing on your computer—but the spammer will remain unpunished and continue to send out spam. Is there a way to stop it?

Spammers never use their personal mailboxes for their mailings—otherwise they would be identified very quickly, and their mail accounts would be blocked. To send out spam, they can use infected PCs comprising a botnet or utilise someone else's improperly configured mail servers. Most ISPs don't involve themselves with scammers and criminals. But some are prepared to rent out their assets to anonymous individuals. And those anonyms can be identified.

Let's take a look at a message header. In Microsoft Outlook, email metadata is displayed in the Message Options window. In other mail clients, you may need to use a different menu option. We already wrote about how the metadata can be accessed in the issue From grandpa in the village.

So we open a spam message and look for the Received parameter in the Internet Headers window.

#drweb

Sometimes it can be unavailable. If so, try a similar parameter, such as Received-SPF.

#drweb

Important! If the message passed through several servers, the metadata may contain multiple Received entries. We need the first one, at the bottom.

Now we can check the respective IP address to determine who it belongs to. We checked the address at 2ip.ru. However, you can use any similar site you like.

#drweb

In our case, the IP pointed to a certain ISP. We don't know if the company is aware that its server is being used for illegal activities. What are we going to do?

  1. If we don't expect any emails from abroad, we can configure the mail server so that no messages from specified regions are received.
  2. Or get in touch with the ISP. Especially, if the company resides in our country. No one is looking for problems with law enforcement agencies.

Of course, there exist other types of unwanted messages. For example:

#drweb

Would you like to receive messages from a site of this kind?

#spam #anti-spam #mail #security

Dr.Web recommends

When you use email, pay attention to the details! One can marvel at a car's exterior or take a look under its hood. We assure you some astonishing things can be found there.

#drweb

http://byaki.net/eto_interesno/75974-neobyknovennye-nahodki-pod-kapotami-transportnyh-sredstv.html

Rate this issue and receive Dr.Weblings! (1 vote = 1 Dr.Webling)

Sign in and get 10 Dr.Weblings for sharing the link to this issue via social media.

[Twitter]

Unfortunately, due to Facebook's technical limitations, Dr.Weblings cannot be awarded. However, you can share this link with your friends for free.

Tell us what you think

Leave your comment on the day of publication and get 10 Dr.Weblings, or get 1 Dr.Webling for a comment posted any other day. Comments are published automatically and are reviewed by a moderator. Rules for leaving comments about Doctor Web news items.

To leave a comment, you need to log in under your Doctor Web site account. If you don't have an account yet, you can create one.