Spam filtering for list owner?

Asked by Macs R We on 2009-06-21

Spammers have apparently discovered they can spam FOO-owner@domain by sending mail forged "from" FOO-owner@domain. In the past few weeks I have begun receiving increasing amounts of spam via this channel.

I can't use the spam filtering features of my host's mail package, because the mail ID FOO-owner does not actually exist anywhere. It seems to be virtualized on the fly by the host due to some feature of Mailman, and forwarded to the addresses listed in the configuration as list administrators.

There are many spam controls in Mailman, but they are oriented around postings. None allow control of mail sent to the list owner. I would like to be able to state simply that FOO-owner should reject mail from FOO-owner (we can safely do this because we never send such mail), but I can't seem to do that.

I am using Mailman 2.1.11.cp3 in CPanel version 11.24.4-RELEASE 35075.

Question information

Language:
English Edit question
Status:
Solved
For:
GNU Mailman Edit question
Assignee:
No assignee Edit question
Solved by:
Mark Sapiro
Solved:
2009-06-25
Last query:
2009-06-25
Last reply:
2009-06-21
Best Mark Sapiro (msapiro) said : #1

Privacy options... -> Spam filters -> header_filter_rules are applied to messages to FOO-owner as well as to FOO (this is not true for bounce_matching_headers which applies to list mail only).

You should be able to make a rule with regexp

^from:.*[\s<]foo-owner@

and action discard (Do not reject - the reject will go to FOO-owner or some other forged address) to discard any mail with FOO-owner@ in the From: header sent to either FOO or FOO-owner.

If this doesn't work, see the FAQ at <http://wiki.list.org/display/DOC/Mailman+and+CPanel>.

Macs R We (macsrwe) said : #2

Thank you -- this solution seems to be suppressing the spam mail as advertised.