Email Spoofing via my WP Blog

  • Resolved aprilia

    (@aprilia)


    18 years, 3 months ago

    I have been plagued by an email spoofing problem. I use Outlook Express for email including addresses that use the domain name from my blog. I have a total of four email addresses with three different domain names and only my blog address seems to be affected.

    The outgoing email has and address of 4-6 random characters AT mydomain.com. Is there a way that this (worm, whatever) could have propigated through a comment with a link? I cannot recall any comments with links, but…

    I would think if it were a standard spoofing worm that all my addresses would be sending out emails, not just my blog address. Is that correct?

    I have ran several specific email worm cleaning tools with no success.

    Any thoughts would be greatly appreciated. I am getting my address on blackllists all over the place which, in general, is not cool.

    Thanks.

Viewing 3 replies - 1 through 3 (of 3 total)

  • its very common for this to happen, and no, its probably not the result of anything other than a script that found your domain. And no, this isnt a wordpress specific problem

    If your host supports SPF records, I highly reccomend creating one and asking them to implement it.

    More info on SPF records, and what they do:

    https://www.openspf.org/

    or even:

    https://www.google.com/search?hl=en&q=spf+records&btnG=Google+Search

    SPF records are not foolproof. SPF doesn’t stop header forging, only sender-envelope/client-host forging. And even then, only on the receiving email servers which check for SPF records. The good thing is that more and more servers are checking.

    Thread Starter aprilia

    (@aprilia)

    Thank you very much. My host supports SPF records and they are creating the record for me and will apply it when finished.

    youre very welcome and good luck ??

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Email Spoofing via my WP Blog’ is closed to new replies.