Recently I’ve noticed more spam coming through on several webmaster@ and postmaster@ email addresses. Looking at the email headers they appear to be skipping the spam assassin spam detection as there’s no spam headers that I get on others.
A user with several domains that I configured forwarding the postmaster → to an admin account also was also getting a nasty rash of such emails for several days. I ratcheted up the anti spam but this didn’t work.
Looking through the nasties it was clear they all originated through various .ru domains and senders. As there is no interest in receiving email from .ru I put all .ru into /etc/exim4/blacklist and that dried them up.
Be interested in what others are doing optimally to manage this on Sympl as cutting an entire ccTLD on the RSS out is sub optimal.
I get bounce emails which are sometimes useful. Though most of them are where my server isn’t catching them as spam, but the server the mails are forwarded to does see it as spam and then bounces the email.
I don’t follow. What bounce messages are useful? If you are not sending emails from these addresses, they should not be getting bounce messages 'back". All a bounce can tell you is that someone is spoofing your address.
Not something you have control over.
I’m this case I think it’s due to the way the email forwarding is setup that means it’s coming back there rather than the info@ address. Could get into a circle if doing it that way.