Hello,
I have a user on one of my servers that is getting inundated with bounces from a spammer sending out spam and using my users email address as the return email address. When I say inundated I mean literally 1000s a day. The thing is, the spammer is not using the users domain but using their username@servername.
This user has their default email address set to :fail:, but it is my understanding that that rule only applies to email sent to [email protected] and is bypassed when email is sent to the user@servername.
If I am thinking correctly and if the above is correct if I add an entry to /etc/aliases: username: :fail: then this will perform just like the :fail: entry for their [email protected], for [email protected]? If this is true, are there any negatives that I should be aware of in doing this?
I did do a search through the forum for this but didn't find anything using several different search terms so I apologize if this is discussed somewhere and I just missed it.
Thanks in advance for any advice.
I have a user on one of my servers that is getting inundated with bounces from a spammer sending out spam and using my users email address as the return email address. When I say inundated I mean literally 1000s a day. The thing is, the spammer is not using the users domain but using their username@servername.
This user has their default email address set to :fail:, but it is my understanding that that rule only applies to email sent to [email protected] and is bypassed when email is sent to the user@servername.
If I am thinking correctly and if the above is correct if I add an entry to /etc/aliases: username: :fail: then this will perform just like the :fail: entry for their [email protected], for [email protected]? If this is true, are there any negatives that I should be aware of in doing this?
I did do a search through the forum for this but didn't find anything using several different search terms so I apologize if this is discussed somewhere and I just missed it.
Thanks in advance for any advice.
