View member feedback to this tip.
Regardless of how many blocks you've got for spam, some still gets through. I created an agent and a view to see where it's coming from, so I can block the IPs at the server.
Code:
I also like to put a column in to track
down ISPs.
@RightBack(SMTPOriginator;"@")
Although, these are spoofed so often it can be irrelevant -- but every so often, you get a hit. (And that is sooooooo satisfying.)
By the way, I put it in my mail file, but being the spam queen that I am, I also have a repository for spam from different users -- I put it in there too.
MEMBER FEEDBACK TO THIS TIP
Instead of blocking the IP on your server, why not report your findings to
the DNS Blacklist sites below?
dsn.rfc-ignorant.org
dul.dnsbl.sorbs.net
sbl.spamhaus.org
list.dsbl.org
bl.spamcop.net
—Gregory W.
******************************************
I don't like the idea of running an agent to change the documents by adding two fields -- Recd and FirstRoute -- when these can be easily enough calculated by the view formula. Especially in a mail file, unread marks are very important; it's a bad idea to do mass document updates.
The total column should "hide detail values," since there's no value to the user in seeing a "1" on each row.
—Andre Guirard
******************************************
AUTHOR OF ORIGINAL TIP:
Perhaps I should have put this tip in context....
I manage e-mail for my company. We're not in an environment where the end-users are capable of setting up their own filters, rules, etc. (we could get into a long drawn out conversation about behaviors, competencies, etc. -- just suffice it to say, this level of management is be
To continue reading for free, register below or login
To read more you must become a member of SearchDomino.com
st done globally here.) so when someone complains about Spam, I have them put it into a Spam folder. I monitor about 10 user mail files (including my own), and gather up all the spam and put it into a repository mail file. This is where I do most of my analysis.
Currently, this mail file is about 2 GB. I use additional calculations in
the views. I prefer to speed them up a bit by putting the calculated
fields in the document. I would not recommend putting these fields in the template, or as a server agent on all mail files.
—Cheryl F.
******************************************
There are two items that I think you might find useful.
One final thing that you can do is get the users to use aliases for their SMTP mail needs. This can be done by adding new entries to the short name field on the person document. The change takes effect immediately. In my case, I make up a new alias for every Internet service I signup for. If the Internet server sells the e-mail address to someone for spamming, I'll know exactly who sold it and I can remove the alias for their service from my person document -- thus leaving the spam for that alias as undeliverable dead mail. The only problem your left with then is the logs loading up with errors from the server attempting to send dozens of delivery failures to false e-mail sender domains and mail.box's that load up really fast.
—John G.
Do you have comments on this tip? Let us know.
This tip was submitted to the SearchDomino.com tip exchange by member Cheryl Foster. Please let others know how useful it is via the rating scale below. Do you have a useful Notes/Domino tip or code to share? Submit it to our monthly tip contest and you could win a prize and a spot in our Hall of Fame.
