Today I noted a lot of "blocked" Emails (In the Mail-Manager / SMTP-Logs), where the sender-address equals the receiver-address. All of them are internal addresses.
There are several Block-Reasons:
- RBL (different RBLs)
- RDNS/HELO-Check
I have doubts, that hundrets of users are sending emails to themself (which are blocked), but nobody complains about it :-)
I know, that external spam-senders are frequently using the "destination-address" as "sender-address" as well to bypass some
"bad designed" whitelist rules which should exclude every check for the "owned domain".
So, is there any chance to see some more information on these cases? (Without finding each case in the raw-SMTP logs?)
It would be nice to see, if all these attempts are performed from the same sending-server, or if its just a "common pattern".
This thread was automatically locked due to age.