I keep getting *TONS* of misdirected e-mail from bulk lists having a
return address of lsoft.com. Most recent is
COM (this is a Microsoft software tools mailing
list, as best I can tell). Despite several requests to get them to stop
sending their junk, they just keep on sending it. I have to deal with
this problem a lot as our domain name is di.com and is easily mistyped
(you ought to see all the Texas Instruments mail we get).
Unfortunately, MS Exchange server doesn't keep the headers of this
bounced e-mail, so I can't really tell if it is indeed coming from
lsoft.com. Perhaps this really isn't their fault. I didn't think that
LSOFT was involved in the distribution of bulk blatting...
To stop the crap we get from our favorite spammers, I installed the
following inbound IP filters:
Deny 126.96.36.199/24 0.0.0.0/0
Deny 188.8.131.52/24 0.0.0.0/0
Deny 184.108.40.206/22 0.0.0.0/0
This has put a huge dent in the flow. The first two are cyberpromo and
the last one is prime-data-systems, makers of the unholy floodgate bulk
mailer program. The advantage of blocking all access and not simply
SMTP ports is that they can't go sucking e-mail addresses off your
website or ftp site. This does not stop remailer attacks, of course,
but it is a good first cut.