In the past few months my users sta

[mklim]

In the past few months my users started to receive emails form admin@<ourdomain> containing an attachment “message.zip”. The attachment contains a W32.Mimail.A@mm virus. Other spoofed emails with our domain in the “From” line (mostly spam) get in to our system. For average user these email look like they come from someone in our organization and potentially can cause major problems. I made sure that relay was not allowed on GWIA. Is there something wrong with my GWIA setup? Is there any way to stop messages that look like they came from our domain? At this time we are not using any gateways (like GWAVA) but I guess this might be a solution is everything else fails. Any advice on this issue?

PS: We use GroupWise 6.0.2 on NW 6

 

[ITsmyfault]

Personally, I like using proxies and could not imagine going back to life without them.
1. You protect your e-mail server from public access,
2. you have somewhere for email to cache if you need to take the server down for maintenance,
3 you can run up to 5 inbound proxies (since you can have 5 MX records) which gives you very high resiliancy in the event of failures (whether circuit, hardware or software)
4 - You can set up anti-spoofing (what you need), virus & content scanning, RBL's, etc. There are a wide variety of different solutions from Linux-based appliances (Barracuda) to Win32 apps (Mailsweeper) to Gwava etc etc.
5. Proxies are inexpensive and their ROI is high considering they protect the primary gateway in to your LAN for viri, can substantially reduce the SPAM that comes in and can enforce corporate policy in a way that email servers generally can't.