What can I do about forged emails in my name? I'm getting notification of undelivered ones

From WebarchDocs
Jump to: navigation, search

Sadly, this is a common technique used to send spam email. See: http://en.wikipedia.org/wiki/Joe_job

The sender forges the "From:" part of the email. Any of the forged emails that cannot be delivered are bounced back, but the bounces will go to the forged address. See: http://en.wikipedia.org/wiki/Backscatter_%28email%29

There are certain things you can do about this.

One is to stop using a wildcard email address (eg. *@youraddress, meaning "anything @ youraddress") then you are less likely to get the backscatter in your inbox.

Another is to publish a strong SPF record, see: http://en.wikipedia.org/wiki/Sender_Policy_Framework. If you know which mailservers are authorised to send email on your behalf you can publish SPF records that identify them, making forged mail more easily recognisable.