You should look into the idea of using a catchall account. That
account would get all emails that there is no mailbox for. Then you
could setup a timed delete to simply delete them.
I do this on my email servers, and it reduces substantially the
outbound traffic consisting of NDA messages, which since the SPAM has
forged headers ends up going to some other poor victim!
Additionally you can setup routines to look at the mail in the
catchall account and pick up ones that are legit but mis-addressed. I
use an email client to do all of this (the delete, and the picking up
of valid, misaddressed email. Even outlook can do it.
On Thu, 17 Feb 2005 15:10:37 -0600, "Shan McArthur"
[quoted text, click to view] <shan_mcarthur@spamcop.net> wrote:
>Hello,
>
>We are getting quite a large number of "dictionary attacks" related to spam
>and virus email behavior. In other words, they are sending repeated emails
>to a list of common usernames at my domain name. These usernames do not
>exist. Most of this email has a forged and inaccurate sender address. The
>IIS server is sending back an NDR to this forged address. Most of these
>NDRs are not being delivered and are plugging up the queues, taking up a lot
>of disk space, and are consuming a lot of processing power on the server. I
>want to disable the NDRs completely on the IIS SMTP service, but I cannot
>see any way to do that. Is there a registry key or metabase entry that I
>can use to disable the NDRs? Does anyone have an SMTP event sink that can
>trap and disable these NDRs from being delivered?
>
>The only thing I can see is that there are settings to get these NDRs
>forwarded to an administrative email address and to store them in another
>folder. This would have the effect of creating more mess on the server and
>more emails that should be ignored; both of these are undesirable. I want
>to stop the NDRs completely.
>
>Thanks,
>Shan McArthur
>
PeterD, the Darkstar Network
To email, fix my address!
