Todd Green is a partner of a Memphis-based IT consulting firm. He has over fourteen years' experience in the field of Information Technology and has managed security on many corporate networks over the years. He is the owner of SPAM-X, a Postini reseller (http://www.spam-x.com) and a partner for Postini's preemptive spam and virus filtering service.
Providing security against email related threats has become a burden for most IT professionals in 2006. According to a recent study by Postini, spam and email viruses now make up to 80% of all emails sent out as compared to 50% in 2000. As a result, IT professionals now face a tougher challenge in providing network security for this amount of spam. IT professionals also have the disadvantage of defending against new forms of email threats such as spam zombies, directory harvest attacks, mass mailing trojans, as well as the latest email virus.
In this article, I have listed the seven most effective spam fighting tips for organizations with in-house mail servers. These seven tips are proven techniques I have used for my customers, partners and associates who wish to tighten their perimeter (network) security.
Firewall: A firewall is your first line of defense against hackers, crackers, and spammers. Without a firewall, your network is a disaster waiting to happen and could give any novice hacker free reign over your network. If your organization has multiple Internet users, this tool is essential for securing your network.
Block Port 25: On your firewall, allow outbound traffic on TCP port 25 for all mail servers. Block traffic on outbound TCP port 25 for all other computers and servers. On the Internet, TCP port 25 is used for email traffic through SMTP (Simple Mail Transport Protocol). Blocking this port is a good security practice and prevents mass mailing worms and spam zombies from sending mail from your users' computers.
Managed Email Filtering: Consider using a managed filtering solution such as Postini, Brightmail, or SpamSoap. Managed Email Filtering services quarantine spam, viruses, and email threats before reaching the email servers on your network. In comparison to desktop filters and server appliances, managed filtering services provide superior perimeter (network) protection by preventing delivery of spam and viruses to your network and servers.
Check Relay Setting: A mail server's relay setting controls which computers and servers are able to send SMTP email on your organization's behalf. Check your settings and limit the IP address range to email users on your local network. Some mail servers have settings to limit email relay through authentication. If authentication-based relay is available, setup and configure it too. NOTE: If the relay is not set properly, spammers will be able to send email from your mail server. This exploit is commonly known as an "Open Relay" or a "Spam Relay." Use the Open Relay test at http://www.abuse.net/relay.htm to check if spammers can relay mail from your server.
Black Lists: Setup your mail server(s) with a black list. A black list (black hole list) is a database or listing of known spam sources. Most modern email servers can be configured to query inbound email against online blacklists. Messages originating from these sources can then be blocked. I recommend configuring your email server with SpamHaus blacklist. Spamhaus.org is an excellent free service to use. Some other good blacklists are DBSL and SpamCop.
Reverse DNS: Reverse DNS (rDNS) associates an IP Address with a Domain Name. Most mail servers, as an anti-spam feature, often use a reverse DNS lookup to compare an email address domain name with its IP address. If the IP address found from the rDNS lookup does not match the domain name, it is probably spam. If you haven't done so, setup and configure reverse DNS records on your DNS server.
Anti-Virus Scan: There are many tools that provide adequate anti-virus protection for desktops at the workplace. Most anti-virus software is good at detecting viral threats that proliferate email spam such as mass mailing worms, trojans, and directory harvesters. Large organizations might want to use enterprise anti-spam software with management and monitoring tools that will allow tracking of network virus outbreaks.
Recommended Links: - http://www.spam-x.com [Postini service - managed filtering, 1 to 500 users] - http://www.postini.com [Postini service - managed filtering, 500+ users] - http://www.spamhaus.org [Blacklist] - http://www.dbsl.org [Blacklist] - http://www.spamcop.net [Blacklist] - http://www.abuse.net/relay.htm [Open relay test] - http://www.dnsreport.com [DNS report/open relay test] - http://www.dnsstuff.com [Spam database lookup and open relay test] - http://www.cnn.com/2004/TECH/ptech/02/17/spam.zombies.ap [Spam Zombie Article]
Email viruses and related threats delivered through spam have cost businesses billions of dollars in expenses and lost productivity. Each spam email sent or received from your domain costs your organization money and bandwidth. By implementing these seven tips, your organization can reduce spam and recover costs.
This article: © Copyright 2006 Todd Green and free for republishing.
- Related Videos
- Related Articles
- Ask / Related Q&A
- 3 Easy Tips to Block Spam and Save Time
- SHAME THE BAD BOYS OF EMAIL SPAM
- Seven tips for securing your organization´s network from spam and email viruses
- Anti Spam guide 101
- Can-spam Law - How to Deliver an Effective Email Marketing Campaign and be in Compliance
- Affordable Network Security Software
- Fight Spam! Strategies and Software to Take Back your Inbox
- How to Use Anti Spam Appliances?
How Do You Remove Spyware From Your Computer - The 2 Best Free Methods
By: Dave Patrick | 08/11/2009Spyware is on most home computers, you would not believe the how it finds it's way into your pc. Don't panic if you have been infected, read the two best methods for removing it free.
Use the right application security for your network
By: Jhoana Cooper | 06/11/2009We all know that the biggest threats for IT systems come from the Internet, computers being attacked with all kind of menaces, all the time. If a laptop or a desktop computer would not be connected to the World Wide Web, the only possible threats would be coming when data from external sources, like CD's, DVD'S, memory sticks or cards etc. would be copied on the systems. So, it is important to choose the right application security for your network and use a powerful internet filter.
SPAM - Facts you need to know!!
By: Ian Kelly | 30/10/2009The amount of SPAM in circulation is increasing exponentially year on year. This fact sheet is designed for those who have a SPAM problem and need to know how to reduce it.
Finding Email Senders Using Reverse Email Lookup
By: Allen Blakemore | 26/10/2009You can find name from email even if all you have is an email address. This might, at first, sound like a hoax, but there actually and truly is a technology that traces the source of messages and finds out the sender's specific details. These information can include the sender's location, real name, telephone number, and even the exact home address.
Protection from Adware
By: Brady Coleman | 19/10/2009Some methods and free tools to keep your PC free from adwares and spywares. Just follow these steps and you can be assured of your computer's safety.
Nigeria Scam
By: Sean | 14/10/2009The Nigeria scam is a common type of internet fraud also known as the “advanced fee fraud” or the 4-1-9 fraud. The fraud is perpetuated through email messages, letters and can even be sent through fax.
Google SideWiki Blocker Has Webmasters Outranged Block SideWiki Is The Answer
By: James Stein | 10/10/2009Google has unleashed one of the most evilest tools ever created online and has forced all websites to deal with this tool. Learn what google has really done and what you can do about it.