Bindars Outlook Express Help Desk

Spam Control

Jump to:

Screening Unwanted Email and Spam

 

Forged and Spoofed Addresses in Spam Messages

"A friend of mine got an e-mail from himself that was Spam. Can this really happen?"

People don’t usually send themselves Spam however some Spammers have been known to make it look that way. It can sometimes appear as if a friend is sending you Spam. Or it can appear that it is sent to yourself.

To mask where Spam is coming from, Spammers will sometimes pick an address (or a few addresses) from the list they are Spamming and use it in place of their own. So, for example, if you were on the Spam list you might get an e-mail from yourself. Or, if they had taken your address from their Spam list and used this as the sender address, you might get quite a few bounce back messages. (Bounce backs indicate e-mail sent to addresses that are not valid.)

These e-mails are forgeries since you did not really send them - someone simply used your address from a list. They are called spoofs if they forge the visible address and also the server origin.

"Ratware" (Spamming software) can take addresses from a list and randomly insert them as the sender address. This helps the Spammer because it means the bounce backs won’t all go to a single address (and there are usually loads of bounce backs). All of this benefits the Spammer since it helps avoid Spam detection on servers and home systems.

Our confusion is generally a result of disguised information in the e-mail header. For many of us, our e-mail programs only show us the following fields:

To:
From:
Cc:
Subject:

However, this header information can be disguised to hide the fact that an e-mail is Spam. And this is exactly what Spammers do. The result is that we often don’t see our own name or address in the “To” or “Cc” fields. They have been hidden.

Similarly, Spammers also disguise their own address in the “From” field. In some cases, we may even see our own name there. This is because the “From” field is forged. Spammers don’t want anyone replying to them and have therefore disguised their true address.

The important thing to keep in mind is not to trust everything you see. If you receive a Spam, the name or address you see in the “From” field is probably not the true one. Responding to Spam lets Spammers know that you’ve received their message, encouraging them to send you more.

 Tips

  • Be careful about whom you give out your e-mail address to

  • Consider getting a second e-mail address to use for online sign- ups

  • Use a second e-mail address for postings to newsgroups

  • If you have a Web site with a contact link, use a second e-mail address or hide the address with code (like java)

   Also See:

Reading e-mail headers (spamabuse.org)
Common e-mail header properties (spamabuse.org)

Screening Unwanted Email and Spam

Everybody gets unwanted email these days. Much of this email is either trying to sell you something you probably don't want or else is trying to infect you with a virus via an email attachment. What can you do? Note: Using the "Blocked Senders List" in Outlook Express is the least effective method of preventing SPAM.

  1. Never open an attachment. First save an attachment to disk and then scan it with your antivirus software to ensure it is not infected (make sure your antivirus software definitions are up to date). If the attachment is from someone you don't know, don't even bother opening it. Its not worth it.



  2. Screen email. Disable the Preview Pane (you can put a button on the toolbar to turn this on and off). Then go to View>Columns and enable most of the headers. That way you can scan the headers and pick out the various obvious unwanted mail. Once you find messages that you don't want to open, select the headers of those messages without opening the messages and perform a Shift-Delete to permanently remove them from the folder. Once they are removed, they will no longer be accessible, so don't do this on messages you might wish to keep.



  3. On messages left that might be worth opening, go to Tools>Options>Read and check the box that says "Read all messages in plain text" (available only with IE6 SP1 or WinXP SP1 and higher). Reading in plain text prevents any returns to the spammer's server, so your email address cannot be validated in that fashion. In addition, it prevents malformed or malicious HTML code from executing. If you find the message is worth viewing as HTML, then you can go back to Tools>Options>Read tab and uncheck the option to read in plain text only and then reopen the message to view it as HTML (note that you can put this button on a toolbar with OETool
    www.oehelp.com/OETool/.



  4. If you get unwanted email repeatedly from the same source, you can set up message rules to block out some of these messages. In particular, use rules that filter IN your Email instead of filtering out SPAM. See the help file in OE and also
    http://insideoe.tomsterdam.com/tips/rules.htm


    5. and
    http://www.mindspring.com/~majik/messagerules.htm

  5. If you find a message that is spam and that offends you or is deceptive, go to Message>Forward as attachment and send it to
    uce@ftc.gov .


The US Federal Trade Comission is launching a major crackdown on deceptive and offensive spam. Visit their site at
http://www.ftc.gov/bcp/conline/pubs/alerts/spamalrt.htm
for more info.

Visitors to this page since April 05, 2006  Hit Counter