Forms email - server log (?)

  • Thread starter Thread starter =?iso-8859-1?Q?Rob_Giordano_\=28Crash_Gordon=AE\=2
  • Start date Start date
?

=?iso-8859-1?Q?Rob_Giordano_\=28Crash_Gordon=AE\=2

Howdy all..

Using email form in FP, on Linux/Apache server with Cpanel.

I hardly ever check the server logs but I did yesterday, and noticed what looks like mortgage company spam (outgoing?) in the server mail logs. I'm not really knowledgable in this area so would appreciate some input on this.

Does this mean someone(s) using my form to relay spam or something?

How to curtail this?...Cpanel looks like it has some spam control, but not sure how/what it does.

TNX,
Rob
 
Check with your web host, as they may have a open relay, which is very bad.

When using the FP Form Handler, it will only use the email address you have inserted under Form
Properties.

--
==============================================
Thomas A. Rowe (Microsoft MVP - FrontPage)
WebMaster Resources(tm)

FrontPage Resources, WebCircle, MS KB Quick Links, etc.
==============================================
If you feel your current issue is a results of installing
a Service Pack or security update, please contact
Microsoft Product Support Services:
http://support.microsoft.com
If the problem can be shown to have been caused by a
security update, then there is usually no charge for the call.
==============================================

Howdy all..

Using email form in FP, on Linux/Apache server with Cpanel.

I hardly ever check the server logs but I did yesterday, and noticed what looks like mortgage
company spam (outgoing?) in the server mail logs. I'm not really knowledgable in this area so would
appreciate some input on this.

Does this mean someone(s) using my form to relay spam or something?

How to curtail this?...Cpanel looks like it has some spam control, but not sure how/what it does.

TNX,
Rob
 
inline,,,


Thomas A. Rowe said:
Check with your web host, as they may have a open relay, which is very bad.
Click to expand...
Checking with my web dood now.

When using the FP Form Handler, it will only use the email address you have inserted under Form
Properties.
Click to expand...

That's what has me puzzled, it shows other em addresses...looks like relaying huh?

Thanks!
 
Sound like a open rely to me.

--
==============================================
Thomas A. Rowe (Microsoft MVP - FrontPage)
WebMaster Resources(tm)

FrontPage Resources, WebCircle, MS KB Quick Links, etc.
==============================================
If you feel your current issue is a results of installing
a Service Pack or security update, please contact
Microsoft Product Support Services:
http://support.microsoft.com
If the problem can be shown to have been caused by a
security update, then there is usually no charge for the call.
==============================================

inline,,,


Thomas A. Rowe said:
Check with your web host, as they may have a open relay, which is very bad.
Click to expand...
Checking with my web dood now.

When using the FP Form Handler, it will only use the email address you have inserted under Form
Properties.
Click to expand...

That's what has me puzzled, it shows other em addresses...looks like relaying huh?

Thanks!
 
Open relays can be checked at:

http://www.dnsreport.com/

Using the zone report and putting in the domain name, such as mydomain.com
and clicking on the DNS Report button.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| Sound like a open rely to me.
|
| --
| ==============================================
| Thomas A. Rowe (Microsoft MVP - FrontPage)
| WebMaster Resources(tm)
|
| FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| ==============================================
| If you feel your current issue is a results of installing
| a Service Pack or security update, please contact
| Microsoft Product Support Services:
| http://support.microsoft.com
| If the problem can be shown to have been caused by a
| security update, then there is usually no charge for the call.
| ==============================================
|
message
| | inline,,,
|
|
| > Check with your web host, as they may have a open relay, which is very
bad.
| >
| Checking with my web dood now.
|
|
| > When using the FP Form Handler, it will only use the email address you
have inserted under Form
| > Properties.
|
| That's what has me puzzled, it shows other em addresses...looks like
relaying huh?
|
| Thanks!
|
|
|
|
| >
| > --
| > ==============================================
| > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > WebMaster Resources(tm)
| >
| > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > ==============================================
| > If you feel your current issue is a results of installing
| > a Service Pack or security update, please contact
| > Microsoft Product Support Services:
| > http://support.microsoft.com
| > If the problem can be shown to have been caused by a
| > security update, then there is usually no charge for the call.
| > ==============================================
| >
in message
| > | > Howdy all..
| >
| > Using email form in FP, on Linux/Apache server with Cpanel.
| >
| > I hardly ever check the server logs but I did yesterday, and noticed
what looks like mortgage
| > company spam (outgoing?) in the server mail logs. I'm not really
knowledgable in this area so
| > would
| > appreciate some input on this.
| >
| > Does this mean someone(s) using my form to relay spam or something?
| >
| > How to curtail this?...Cpanel looks like it has some spam control, but
not sure how/what it does.
| >
| > TNX,
| > Rob
| >
| >
| >
|
|
 
AH...thanks!


Tom Pepper Willett said:
Open relays can be checked at:

http://www.dnsreport.com/

Using the zone report and putting in the domain name, such as mydomain.com
and clicking on the DNS Report button.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| Sound like a open rely to me.
|
| --
| ==============================================
| Thomas A. Rowe (Microsoft MVP - FrontPage)
| WebMaster Resources(tm)
|
| FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| ==============================================
| If you feel your current issue is a results of installing
| a Service Pack or security update, please contact
| Microsoft Product Support Services:
| http://support.microsoft.com
| If the problem can be shown to have been caused by a
| security update, then there is usually no charge for the call.
| ==============================================
|
message
| | inline,,,
|
|
| > Check with your web host, as they may have a open relay, which is very
bad.
| >
| Checking with my web dood now.
|
|
| > When using the FP Form Handler, it will only use the email address you
have inserted under Form
| > Properties.
|
| That's what has me puzzled, it shows other em addresses...looks like
relaying huh?
|
| Thanks!
|
|
|
|
| >
| > --
| > ==============================================
| > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > WebMaster Resources(tm)
| >
| > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > ==============================================
| > If you feel your current issue is a results of installing
| > a Service Pack or security update, please contact
| > Microsoft Product Support Services:
| > http://support.microsoft.com
| > If the problem can be shown to have been caused by a
| > security update, then there is usually no charge for the call.
| > ==============================================
| >
in message
| > | > Howdy all..
| >
| > Using email form in FP, on Linux/Apache server with Cpanel.
| >
| > I hardly ever check the server logs but I did yesterday, and noticed
what looks like mortgage
| > company spam (outgoing?) in the server mail logs. I'm not really
knowledgable in this area so
| > would
| > appreciate some input on this.
| >
| > Does this mean someone(s) using my form to relay spam or something?
| >
| > How to curtail this?...Cpanel looks like it has some spam control, but
not sure how/what it does.
| >
| > TNX,
| > Rob
| >
| >
| >
|
|
Click to expand...
 
So, if I enter a phoney email addr like; (e-mail address removed) and it returns a successful connection that means there's an open relay happening, is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.
 
You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on the
server).

Scroll down to the open relay section. It will tell you if the mail server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.
 
Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box down says SPF Record (?):

[I also ran the secondary abuse relay test and that one says relaying is closed]

"Your domain does not have an SPF record. This means that spammers can easily send out E-mail that looks like it came from your domain, which can make your domain look bad (if the recipient thinks you really sent it), and can cost you money (when people complain to you, rather than the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was the target date for domains to have SPF records in place (Hotmail, for example, started checking SPF records on 01 Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally see spam emails in the log?

Thanks!
 
http://spf.pobox.com/wizard.html


Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is closed]

"Your domain does not have an SPF record. This means that spammers can easily send out E-mail
that looks like it came from your domain, which can make your domain look bad (if the recipient
thinks you really sent it), and can cost you money (when people complain to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was the target date for
domains to have SPF records in place (Hotmail, for example, started checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally see spam emails in the
log?

Thanks!
 
I recently instituted SPF on our mail server, and it's catching all the
baddies.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| http://spf.pobox.com/wizard.html
|
|
message
| | Ah ok, I was using the email one on the right.
|
| Using the dns report one says that Relaying is Closed but the next box
down says SPF Record
| (?):
|
| [I also ran the secondary abuse relay test and that one says relaying is
closed]
|
| "Your domain does not have an SPF record. This means that spammers can
easily send out E-mail
| that looks like it came from your domain, which can make your domain look
bad (if the recipient
| thinks you really sent it), and can cost you money (when people complain
to you, rather than
| the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was
the target date for
| domains to have SPF records in place (Hotmail, for example, started
checking SPF records on 01
| Oct 2004)."
|
|
|
| Not sure what that means. But, if it's only that why would I acutally see
spam emails in the
| log?
|
| Thanks!
|
|
|
| | > You don't enter an email address.
| >
| > Use the *left* text box.
| >
| > Enter the domain used by the mail server, such as: mydomain.com
| >
| > Click on the "DNS Report" button.
| >
| > Wait for the results page to fully load (it's checking many items on the
| > server).
| >
| > Scroll down to the open relay section. It will tell you if the mail
server
| > is open relay or not.
| >
| >
| > --
| > ===
| > Tom "Pepper" Willett
| > Microsoft MVP - FrontPage
| > ---
| > About FrontPage 2003:
| > http://office.microsoft.com/home/office.aspx?assetid=FX01085802
| > ===
in
| > message | > So, if I enter a phoney email addr like; (e-mail address removed) and it
| > returns a successful connection that means there's an open relay
happening,
| > is that correct?
| >
| > The host server dood should be able to lock this down right?
| >
| > Thanks,
| >
| > R.
| >
| >
| > | > > Open relays can be checked at:
| > >
| > > http://www.dnsreport.com/
| > >
| > > Using the zone report and putting in the domain name, such as
mydomain.com
| > > and clicking on the DNS Report button.
| > >
| > > --
| > > ===
| > > Tom "Pepper" Willett
| > > Microsoft MVP - FrontPage
| > > ---
| > > About FrontPage 2003:
| > > http://office.microsoft.com/home/office.aspx?assetid=FX01085802
| > > ===
| > > | > > | Sound like a open rely to me.
| > > |
| > > | --
| > > | ==============================================
| > > | Thomas A. Rowe (Microsoft MVP - FrontPage)
| > > | WebMaster Resources(tm)
| > > |
| > > | FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > > | ==============================================
| > > | If you feel your current issue is a results of installing
| > > | a Service Pack or security update, please contact
| > > | Microsoft Product Support Services:
| > > | http://support.microsoft.com
| > > | If the problem can be shown to have been caused by a
| > > | security update, then there is usually no charge for the call.
| > > | ==============================================
| > > |
| > > | "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
| > > in
| > > message
| > > | | > > | inline,,,
| > > |
| > > |
| > > | > > | > Check with your web host, as they may have a open relay, which is
very
| > > bad.
| > > | >
| > > | Checking with my web dood now.
| > > |
| > > |
| > > | > When using the FP Form Handler, it will only use the email address
you
| > > have inserted under Form
| > > | > Properties.
| > > |
| > > | That's what has me puzzled, it shows other em addresses...looks like
| > > relaying huh?
| > > |
| > > | Thanks!
| > > |
| > > |
| > > |
| > > |
| > > | >
| > > | > --
| > > | > ==============================================
| > > | > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > > | > WebMaster Resources(tm)
| > > | >
| > > | > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > > | > ==============================================
| > > | > If you feel your current issue is a results of installing
| > > | > a Service Pack or security update, please contact
| > > | > Microsoft Product Support Services:
| > > | > http://support.microsoft.com
| > > | > If the problem can be shown to have been caused by a
| > > | > security update, then there is usually no charge for the call.
| > > | > ==============================================
| > > | >
| > > | > "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
| > > in message
| > > | > | > > | > Howdy all..
| > > | >
| > > | > Using email form in FP, on Linux/Apache server with Cpanel.
| > > | >
| > > | > I hardly ever check the server logs but I did yesterday, and
noticed
| > > what looks like mortgage
| > > | > company spam (outgoing?) in the server mail logs. I'm not really
| > > knowledgable in this area so
| > > | > would
| > > | > appreciate some input on this.
| > > | >
| > > | > Does this mean someone(s) using my form to relay spam or
something?
| > > | >
| > > | > How to curtail this?...Cpanel looks like it has some spam control,
but
| > > not sure how/what it does.
| > > | >
| > > | > TNX,
| > > | > Rob
| > > | >
| > > | >
| > > | >
| > > |
| > > |
| > >
| > >
| >
| >
|
|
 
ok, thanks guys...guess i have some reading to do


DI said:
http://spf.pobox.com/wizard.html


Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is closed]

"Your domain does not have an SPF record. This means that spammers can easily send out E-mail
that looks like it came from your domain, which can make your domain look bad (if the recipient
thinks you really sent it), and can cost you money (when people complain to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was the target date for
domains to have SPF records in place (Hotmail, for example, started checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally see spam emails in the
log?

Thanks!



Tom Pepper Willett said:
You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on the
server).

Scroll down to the open relay section. It will tell you if the mail server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.
Click to expand...
Click to expand...
 
Rob: Unless you are the mail server admin with control over the DNS server,
you can't do anything with SPF. It's up to the ISP/Mail Host to implement
it.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message ok, thanks guys...guess i have some reading to do


DI said:
http://spf.pobox.com/wizard.html


message
Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box
down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is
closed]

"Your domain does not have an SPF record. This means that spammers can
easily send out E-mail
that looks like it came from your domain, which can make your domain look
bad (if the recipient
thinks you really sent it), and can cost you money (when people complain
to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was
the target date for
domains to have SPF records in place (Hotmail, for example, started
checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally see
spam emails in the
log?

Thanks!



Tom Pepper Willett said:
You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on the
server).

Scroll down to the open relay section. It will tell you if the mail
server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
in
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay
happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.
Click to expand...
Click to expand...
 
Yah, I figured..my host dood will take care of it...I just wanna understand it for my own knowledge base.


Tom Pepper Willett said:
Rob: Unless you are the mail server admin with control over the DNS server,
you can't do anything with SPF. It's up to the ISP/Mail Host to implement
it.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message ok, thanks guys...guess i have some reading to do


DI said:
http://spf.pobox.com/wizard.html


message
Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box
down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is
closed]

"Your domain does not have an SPF record. This means that spammers can
easily send out E-mail
that looks like it came from your domain, which can make your domain look
bad (if the recipient
thinks you really sent it), and can cost you money (when people complain
to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was
the target date for
domains to have SPF records in place (Hotmail, for example, started
checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally see
spam emails in the
log?

Thanks!



Tom Pepper Willett said:
You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on the
server).

Scroll down to the open relay section. It will tell you if the mail
server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
in
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay
happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.


Open relays can be checked at:

http://www.dnsreport.com/

Using the zone report and putting in the domain name, such as
mydomain.com
and clicking on the DNS Report button.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| Sound like a open rely to me.
|
| --
| ==============================================
| Thomas A. Rowe (Microsoft MVP - FrontPage)
| WebMaster Resources(tm)
|
| FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| ==============================================
| If you feel your current issue is a results of installing
| a Service Pack or security update, please contact
| Microsoft Product Support Services:
| http://support.microsoft.com
| If the problem can be shown to have been caused by a
| security update, then there is usually no charge for the call.
| ==============================================
|
| "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in
message
| | inline,,,
|
|
| > Check with your web host, as they may have a open relay, which is
very
bad.
| >
| Checking with my web dood now.
|
|
| > When using the FP Form Handler, it will only use the email address
you
have inserted under Form
| > Properties.
|
| That's what has me puzzled, it shows other em addresses...looks like
relaying huh?
|
| Thanks!
|
|
|
|
| >
| > --
| > ==============================================
| > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > WebMaster Resources(tm)
| >
| > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > ==============================================
| > If you feel your current issue is a results of installing
| > a Service Pack or security update, please contact
| > Microsoft Product Support Services:
| > http://support.microsoft.com
| > If the problem can be shown to have been caused by a
| > security update, then there is usually no charge for the call.
| > ==============================================
| >
| > "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in message
| > | > Howdy all..
| >
| > Using email form in FP, on Linux/Apache server with Cpanel.
| >
| > I hardly ever check the server logs but I did yesterday, and
noticed
what looks like mortgage
| > company spam (outgoing?) in the server mail logs. I'm not really
knowledgable in this area so
| > would
| > appreciate some input on this.
| >
| > Does this mean someone(s) using my form to relay spam or
something?
| >
| > How to curtail this?...Cpanel looks like it has some spam control,
but
not sure how/what it does.
| >
| > TNX,
| > Rob
| >
| >
| >
|
|
Click to expand...
Click to expand...
Click to expand...
 
It can be very, very tricky and cause lots of problems if the DNS record is
not set up correctly.

Also, it will require that the host uses authentication for the mail server.
--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message Yah, I figured..my host dood will take care of it...I just wanna understand
it for my own knowledge base.


Tom Pepper Willett said:
Rob: Unless you are the mail server admin with control over the DNS
server,
you can't do anything with SPF. It's up to the ISP/Mail Host to implement
it.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message ok, thanks guys...guess i have some reading to do


DI said:
http://spf.pobox.com/wizard.html


in
message
Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box
down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is
closed]

"Your domain does not have an SPF record. This means that spammers can
easily send out E-mail
that looks like it came from your domain, which can make your domain
look
bad (if the recipient
thinks you really sent it), and can cost you money (when people complain
to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was
the target date for
domains to have SPF records in place (Hotmail, for example, started
checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally
see
spam emails in the
log?

Thanks!



Tom Pepper Willett said:
You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on
the
server).

Scroll down to the open relay section. It will tell you if the mail
server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
in
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay
happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.


Open relays can be checked at:

http://www.dnsreport.com/

Using the zone report and putting in the domain name, such as
mydomain.com
and clicking on the DNS Report button.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| Sound like a open rely to me.
|
| --
| ==============================================
| Thomas A. Rowe (Microsoft MVP - FrontPage)
| WebMaster Resources(tm)
|
| FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| ==============================================
| If you feel your current issue is a results of installing
| a Service Pack or security update, please contact
| Microsoft Product Support Services:
| http://support.microsoft.com
| If the problem can be shown to have been caused by a
| security update, then there is usually no charge for the call.
| ==============================================
|
| "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in
message
| | inline,,,
|
|
| > Check with your web host, as they may have a open relay, which
is
very
bad.
| >
| Checking with my web dood now.
|
|
| > When using the FP Form Handler, it will only use the email
address
you
have inserted under Form
| > Properties.
|
| That's what has me puzzled, it shows other em addresses...looks
like
relaying huh?
|
| Thanks!
|
|
|
|
| >
| > --
| > ==============================================
| > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > WebMaster Resources(tm)
| >
| > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > ==============================================
| > If you feel your current issue is a results of installing
| > a Service Pack or security update, please contact
| > Microsoft Product Support Services:
| > http://support.microsoft.com
| > If the problem can be shown to have been caused by a
| > security update, then there is usually no charge for the call.
| > ==============================================
| >
| > "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in message
| > | > Howdy all..
| >
| > Using email form in FP, on Linux/Apache server with Cpanel.
| >
| > I hardly ever check the server logs but I did yesterday, and
noticed
what looks like mortgage
| > company spam (outgoing?) in the server mail logs. I'm not really
knowledgable in this area so
| > would
| > appreciate some input on this.
| >
| > Does this mean someone(s) using my form to relay spam or
something?
| >
| > How to curtail this?...Cpanel looks like it has some spam
control,
but
not sure how/what it does.
| >
| > TNX,
| > Rob
| >
| >
| >
|
|
Click to expand...
Click to expand...
Click to expand...
 
I ran the same tests on the webs I have on Windows servers and they appear to be much tighter than the Linux one I'm having trouble with...at least from what I can figure out of those dns reports pages. I wonder if my Linux guy knows what he's doing - or not.

Thanks for the input!


Tom Pepper Willett said:
It can be very, very tricky and cause lots of problems if the DNS record is
not set up correctly.

Also, it will require that the host uses authentication for the mail server.
--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message Yah, I figured..my host dood will take care of it...I just wanna understand
it for my own knowledge base.


Tom Pepper Willett said:
Rob: Unless you are the mail server admin with control over the DNS
server,
you can't do anything with SPF. It's up to the ISP/Mail Host to implement
it.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
message ok, thanks guys...guess i have some reading to do


DI said:
http://spf.pobox.com/wizard.html


in
message
Ah ok, I was using the email one on the right.

Using the dns report one says that Relaying is Closed but the next box
down says SPF Record
(?):

[I also ran the secondary abuse relay test and that one says relaying is
closed]

"Your domain does not have an SPF record. This means that spammers can
easily send out E-mail
that looks like it came from your domain, which can make your domain
look
bad (if the recipient
thinks you really sent it), and can cost you money (when people complain
to you, rather than
the spammer). You may want to add an SPF record ASAP, as 01 Oct 2004 was
the target date for
domains to have SPF records in place (Hotmail, for example, started
checking SPF records on 01
Oct 2004)."



Not sure what that means. But, if it's only that why would I acutally
see
spam emails in the
log?

Thanks!



You don't enter an email address.

Use the *left* text box.

Enter the domain used by the mail server, such as: mydomain.com

Click on the "DNS Report" button.

Wait for the results page to fully load (it's checking many items on
the
server).

Scroll down to the open relay section. It will tell you if the mail
server
is open relay or not.


--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
in
message So, if I enter a phoney email addr like; (e-mail address removed) and it
returns a successful connection that means there's an open relay
happening,
is that correct?

The host server dood should be able to lock this down right?

Thanks,

R.


Open relays can be checked at:

http://www.dnsreport.com/

Using the zone report and putting in the domain name, such as
mydomain.com
and clicking on the DNS Report button.

--
===
Tom "Pepper" Willett
Microsoft MVP - FrontPage
---
About FrontPage 2003:
http://office.microsoft.com/home/office.aspx?assetid=FX01085802
===
| Sound like a open rely to me.
|
| --
| ==============================================
| Thomas A. Rowe (Microsoft MVP - FrontPage)
| WebMaster Resources(tm)
|
| FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| ==============================================
| If you feel your current issue is a results of installing
| a Service Pack or security update, please contact
| Microsoft Product Support Services:
| http://support.microsoft.com
| If the problem can be shown to have been caused by a
| security update, then there is usually no charge for the call.
| ==============================================
|
| "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in
message
| | inline,,,
|
|
| > Check with your web host, as they may have a open relay, which
is
very
bad.
| >
| Checking with my web dood now.
|
|
| > When using the FP Form Handler, it will only use the email
address
you
have inserted under Form
| > Properties.
|
| That's what has me puzzled, it shows other em addresses...looks
like
relaying huh?
|
| Thanks!
|
|
|
|
| >
| > --
| > ==============================================
| > Thomas A. Rowe (Microsoft MVP - FrontPage)
| > WebMaster Resources(tm)
| >
| > FrontPage Resources, WebCircle, MS KB Quick Links, etc.
| > ==============================================
| > If you feel your current issue is a results of installing
| > a Service Pack or security update, please contact
| > Microsoft Product Support Services:
| > http://support.microsoft.com
| > If the problem can be shown to have been caused by a
| > security update, then there is usually no charge for the call.
| > ==============================================
| >
| > "Rob Giordano (Crash Gordon®)" <[email protected]>
wrote
in message
| > | > Howdy all..
| >
| > Using email form in FP, on Linux/Apache server with Cpanel.
| >
| > I hardly ever check the server logs but I did yesterday, and
noticed
what looks like mortgage
| > company spam (outgoing?) in the server mail logs. I'm not really
knowledgable in this area so
| > would
| > appreciate some input on this.
| >
| > Does this mean someone(s) using my form to relay spam or
something?
| >
| > How to curtail this?...Cpanel looks like it has some spam
control,
but
not sure how/what it does.
| >
| > TNX,
| > Rob
| >
| >
| >
|
|
Click to expand...
Click to expand...
Click to expand...
 
Back
Top