Help: Exim + Unknown Domain SPAM?

Hey all!

I admin a few Linux boxes and am curious to know what kind of configuration I would need (options) to block incoming mail from invalid hello (helo) commands. I have been getting a rash of spam and don't understand why Exim isn't just dropping it...

I'm running:

- cPanel
- Exim 4+

Let me know, I'm very curious.

Here's an example header. I've put in bold the invalid stuff that's unfiltered...

-=-=-
Return-path: <postmaster@paycounter.com>
Envelope-to: me@mydomain.com
Delivery-date: Tue, 27 Dec 2005 13:09:07 -0500
Received: from mydomain by my.server.com with local-bsmtp (Exim 4.52)
id 1ErJFz-0003LU-C9
for me@mydomain.com; Tue, 27 Dec 2005 13:09:07 -0500
Received: from [201.135.154.239] (helo=asvai.com)
by my.server.com with smtp (Exim 4.52)
id 1ErJFl-0003GA-Ah; Tue, 27 Dec 2005 13:09:00 -0500
From: postmaster@paycounter.com
To: some_fake_address@mydomain.com
Date: Tue, 27 Dec 2005 17:42:01 UTC
Subject: Registration Confirmation
Importance: Normal
X-Mailer: SpeedMail_V6.68
X-Priority: 3 (Normal)
Message-ID: <3ff13bc3215.d6f0@paycounter.com>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="==b7ac682dd.6eef00f"
Content-Transfer-Encoding: 7bit
X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on
my.server.com
X-Spam-Level: ****
X-Spam-Status: No, score=4.9 required=5.0 tests=AWL,BAYES_50,
DNS_FROM_AHBL_RHSBL,INVALID_DATE,NO_REAL_NAME,RATWARE_HASH_2_V2,
RCVD_IN_SORBS_DUL,URIBL_WS_SURBL autolearn=no version=3.0.4
-=-=-

The asvai.com domain isn't even registered online, so how come my server didn't drop the mail for a bad domain?

Any help would be great.

Thank you muchly in advance for all you guys do.

Seasons greetings,

Jacob

 

 

 

 

Top