The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Invalid from headers

Discussion in 'E-mail Discussions' started by anand, Jul 2, 2014.

  1. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    Hi,

    We face this issue very frequently where our users use a different FROM address than what is hosted/ their own domain. Example: their domain is example.com, and using SMTP authenticated session they can send mail using FROM as example.net.

    Is there a way to block this ? Something in exim, which checks the from header, and sees if its a domain hosted by the server, otherwise reject the mail ?

    Thanks
     
  2. SS-Maddy

    SS-Maddy Well-Known Member

    Joined:
    Mar 28, 2009
    Messages:
    83
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Yes, SPF is an effective way to defend this type of issues. You can enable it for your domain
     
  3. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    How will SPF stop my users to use invalid FROM addresses ?
     
  4. SS-Maddy

    SS-Maddy Well-Known Member

    Joined:
    Mar 28, 2009
    Messages:
    83
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    SPF will check and confirm whether the mail is originated from the server where it is hosted. The issue appears to be of spoofing nature and I think the emails you see are the bounced ones. To know for sure the mail headers need to evaluated. SPF is an effective tool to defend spoofing to a great extent.
     
  5. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    You want me to check SPF for self hosted domain ? Not sure if its making any sense. I want to stop outgoing mails with invalid FROM addresses.
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    650
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The SPF record that you configure in cPanel is only going to matter to remote mail servers. It won't prevent your email users from spoofing the "FROM" field. The following thread provides some solutions:

    Outgoing Email With Spoofed From Address

    Thank you.
     
  7. anand

    anand Well-Known Member

    Joined:
    Nov 11, 2002
    Messages:
    1,435
    Likes Received:
    1
    Trophy Points:
    38
    Location:
    India
    cPanel Access Level:
    DataCenter Provider
    This looks exactly like what I was looking for, thanks :)

    Will try and share if any issues arise.
     
Loading...

Share This Page