Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Distribution groups pounded by SPAM 1

Status
Not open for further replies.
ecojohnson

ecojohnson

Programmer
Jul 2, 2001
54
0
0
US
Hi everyone.

I am a fairly new user to Exchange 2003 and I apologize upfront for any "beginner ignorances" I may have.

I have been using Exchange 2003 for about a year now. We have a small little spam blocker and it seems to work.
Yesterday, around 10:00 AM PST, I started getting 3-4 SPAM e-mails a minute. Every single one of them contain attachments. The e-mail will say something like:

Account and Password Information are attached!

or

My old address doesn't work. Please read and check...

Almost every attachment is a .zip file. I noticed that the users getting the e-mails are ones that are members of our "information" and "sales" distribution lists.

Any idea how to stop it?
 
Sort by date Sort by votes
Eco, I've been getting the same thing for months now. I have educated my users NOT to open .zip files. I will be checking this post to see if anyone can tell us IF there is a way to block these messages from passing out Exchange 2k3 Server.
BTW, I'm using Norton's Antispam software that I JUST installed. Lots of stuff getting blocked, however, these particular emails with the .zip attachments seem to be leaking through. I was about (no kidding here) to call Symantec tech support when I saw your post. I will wait for the gurus here to answer before I go spendin' plat for Tech suppport.

Dan
 
Upvote 0 Downvote
Wow, that's a bit of a relief (well, not really, but I guess it's nice to know since "misery loves company").

I agree with you, if I don't hear anything from the forums, a support call to Symantec may be in order. I'm going to install the new version of our spam blocker. I'm not sure if this will have any effect, but it's worth a try.
 
Upvote 0 Downvote
Ok - well thank you for your reply. I appreciated it very much.
 
Upvote 0 Downvote
If your AV and anti spam are up to date and you are running bayesian analysis, those .zip emails should never seep through.
 
Upvote 0 Downvote
A good quality AV should certainly help with the onslaught of crap that gets delivered. In addition to an AV package you should also use some form of anti-SPAM software. I like the free Intelligent Message Filter that Microsoft provides. If you have installed SP2 on your Exchange box, then you already have this and just need to enable it. If you are still on SP1 and can't go to SP2 for some reason you can still download IMF from
IMF does not offer anything in the way of management of trapped messages. Feel free to test out and use my solution:
I hope you find this post helpful.

Regards,

Mark
 
Upvote 0 Downvote
We use Symantec Mail Security for Exchange, and block all incoming .zip files with that. Our Exchange anti-virus catches those particular zip files as a virus.

I also run IMF as Mark mentioned, I recommend it highly. The price is right, and it catches a fair amount of SPAM. We're pretty small, and I estimate we save about 120 man-hours a year just by filtering that spam.

Good luck,
Dan
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Rohit Bareja
  • Locked
  • Question
View and access only own records, and not the records by others on SharePoint.
Replies
3
Views
1K
garysm
garysm
intel233
  • Locked
  • Question
Export proxy addresses for distribution group
Replies
0
Views
77
intel233
intel233
jmics
  • Locked
  • Question
Exchange 2010 spam filter
Replies
0
Views
78
jmics
jmics
rushej
  • Locked
  • Question
Spam on Exchange2010 Server
Replies
1
Views
72
Alex Robinson
Alex Robinson
GamerDad
  • Locked
  • Question
Set outbound size limit by AD group?
Replies
0
Views
75
GamerDad
GamerDad

Part and Inventory Search

Sponsor

Back
Top