Email Forging

[luktakyin]

Hi,

Do anyone have any solution for stopping email forging?

luktakyin

[squinky86]

Could you be a little more specific, please?
You can't stop the forging of emails. Anyone can send email with a forged "from" header. If you want to verify that someone who sent you a message is actually who they say they are, try looking into PGP (Pretty Good Privacy) or GPG (GNU implementation of PGP). Encryption and message security is a very in-depth topic, so if you could give a specific example of what you're looking for, someone may be able to help you out more.

For further reading on pgp, please see wikipedia: http://en.wikipedia.org/wiki/Pretty_Good_Privacy

[Alan B]

As squinky86, you need to be more specific about what you're asking.

If you mean how to stop spammers using your address or your domain in their forged FROM headers, you could create an SPF record in your DNS Zone. SPF lets you identify which servers are legitimate senders of mail for your domain, while illegitimate senders' (spammers) messages can therefore be ignored by servers that check SPF.

[luktakyin]

Yes, I want to stop spammers using my domain to send SPAM. I have also setup the SPF record in our DNS Zone something like "v=spf1 mx -all".

My domain, let's say xyz.com, is hosted by adimeadozen.com. I have already have email account setup there. I set up another email account in WHB for the same domain. But I did not add WHB settings to the adimeadozen.com's MX record. I sent email from WHB email system. The mail can be sent successfully. I expected that it should be bounded.

Please forgive my English.

[Alan B]

Not all receiving mail hosts check for SPF records. You should send your test message to a mail system that is known to check for SFP records. I believe that Google and Hotmail do so, but you should confirm that before testing.

[luktakyin]

Thank you. However, what is the most popular technology in use? I know that there are SPF, DomainKey, Sender ID etc.

[Matt R.]

SPF is the most common. Put in a ticket and we'll happily setup SPF records for you.

Also you can get free email certificates from Comodo - www.comodo.com
These always help verify your identity.