OS and Software > No, I Will Not Fix Your #@$!! Computer > Outbound mail server Spoofed.

reply to TBusiness

Re: Outbound mail server Spoofed.

reply to PToN
the problem with doing much with HG is they're at the power of everything, especially on a shared/rented machine that wasn't dedicated. But hopefully everything will be fully taken away from this week as planned and moved over. I have a huge billing system there on WHMCS that is currently being backed up and being moved to my T1. And that will be the last thing.

reply to H_T_R_N
that domain only has 2 email addresses. I was hosting about 15 websites with them. They had everything as far as my websites and emails.

reply to izy
the spammers were actually sending through the mail server. But yet still claim that since it was a shared server they're unable to implement any security on the POP/IMAP/STMP server as it would "break" the internet and their servers.

reply to tomdlgns
I am moving away from HG right now. My question was basically if it was just me.

I used to use GoogleApps but ran into problems with a couple of my domains. A couple of the domains that were tied to the account would stop working. So that was when I made the move. But I'm working on bringing my websites in house and working with another company on creating my own "cloud" as a back-up.

reply to TBusiness
It looks like backscatter to me. We had some of that going on earlier this year. Tuning up the spam filter to actually check for backscatter solved the problem.

reply to TBusiness
my question is....why are you still with hostgator?

also, with that small number of users, you are better off using hosted exchange from another provider (or using google apps, free for 10 users or less).

reply to TBusiness

reply to TBusiness

reply to urbanriot
I know that it would do nothing. It was the fact the HostGator's answer was to fix the problem-- turn on domain keys (which is used for incoming mail) and SPF. None which would really correct the problem.

After rebuilding the server and changing the IP that was assigned to it, the SPAM did stop, but the fact is, i pay them the manage the server and all, and nothing was done but passing the buck.

Then I asked- would anyone consider changing hosts after they refused to help and just kept passing the buck. I've debated about putting it back on my own T1 in house again.

reply to TBusiness
Even with SPF turned on, you still have servers on the internet firing off spam in your name and there's nothing you can do to stop it. SPF doesn't stop people from sending, it bounces back from the servers that support SPF that lookup your domain and even then, much of the internet doesn't even support SPF.

reply to WireHead
it is an issue when they're wide open and anyone can send email through them. That does become a big issue. Especially when it becomes a hosting customer's problem when the host won't help correct their mistakes.

reply to H_T_R_N
nope. I always use my drivers licenses number with special marks afterwords

reply to TBusiness
Easy to guess password? I always assign passwords so that they don't end up being easy.

reply to TBusiness
I can't imagine unencrypted mail servers..

The horror..
The horror..

reply to urbanriot
I blame the host as they claim my information was stolen, but then they admit that they do not require any security when using a mail client. Just put in their default server information and you're good to go. If they would have set up SSL i don't think i would have had this problem.

I have used Google Apps, Outlook.com, DreamHost, Hostpapa, Fatcow and never had this problem until this last Friday with Hostgator- who puts EVERYTHING on their "help site" so they don't have to provide support. It even took 3 calls and "online chats" to get a ticket created for the abuse department. otherwise the poorly trained reps would just pass the buck after 1hour+ on hold and say it was fixed.

reply to WireHead
I checked and didn't see anything. but the domain is: pugzbrand.com

reply to nonymous
Since they were using my mailserver if HostGator would have SSL turned on by default I don't see how this would have gone through since the emails where going directly through my server. They also claim that I would not see them in my "sent" folder on webmail due to the items being sent through a client. Which I told them before I do NOT use client email programs for security. But they kept blaming my computer and still did in the end. They refused to take any responsibility on it. The only way they deploy SSL is on webmail which is total BS since I found out by their own "abuse team" their outgoing mail servers are listed on their website and state that no encryption is required. *smh*

reply to TBusiness
I use Google Apps for my home use. had asked the almost same question in security recently. Knew they were spoofed though and not coming from my Google Apps account. Did and do have spf and domain keys setup and working.
Answer was it happens and nothing besides spf and domain keys will help verify my own email. Will not stop the spoofing.

Just wanted to confirm you were not hacked. As you said hacked or spoofed. As said I did not get any way to stop the spoofing.

reply to TBusiness
I have the same situation with one of my domains and basically I enabled SPF and that's all I can do. I analyze all the bounce backs and it's not originating from my location (based on IP's of senders and the fact I get the SPF failure bounce back as well).

This has nothing to do with the host and everything to do with the internet.