Re: Outbound spam control

["Hoffman, Michael" <mhoffman () SBU EDU>]

We do the same at St. Bonaventure.

-Mike

Michael S. Hoffman
Executive Director for Technology Services
St. Bonaventure University
mhoffman () sbu edu
www.sbu.edu


-----Original Message-----
From: Mark Borrie [mailto:mark.borrie () OTAGO AC NZ] 
Sent: Tuesday, June 13, 2006 5:06 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Outbound spam control

We have largely (totally?) avoided this issue by not allowing outbound 
smtp, except for a few designated mailhubs.  All mail servers on 
campus are registered with the mailhubs and relay outbound email 
through them.

All client systems/desktops send email via their host mail servers.

This system was introduced partially to avoid being blacklisted due to 
open relays many years ago and we are are now avoiding contributing 
to the spambot traffic.

Mark.


On 13 Jun 2006 at 12:09, Andy Hooper wrote:

> We have inbound spam reasonably well controlled with Barracuda
"appliances", but have had a couple of incidents recently where
compromised PCs used our a central mail server to distribute outgoing
spam. This resulted in the mail server being put on a black list used by
some large residential service providers. We were able to get it
unlisted within a day, but there was a good bit of effort taken in
responding to complaints about rejected mail. We are also concerned
about the potential for more severe incidents 
in the future -- with about 14,000 active machines on our network,
including ResNet, another compromise is virtually a certainty