How to stop people from using my domain to send spam? [duplicate]

Since it hasn’t been explicitly stated yet, I’ll state it.

No one’s using your domain to send spam.

They’re using spoofed sender data to generate an email that looks like it’s from your domain. It’s about as easy as putting a fake return address on a piece of postal mail, so no, there’s really no way to stop it. SPF (as suggested) can make it easier for other mail servers to identify email that actually comes from your domain and email that doesn’t, but just like you can’t stop me from putting your postal address as the return address on all the death threats I mail, you can’t stop someone from putting your domain as the reply-to address on their spam.

SMTP just wasn’t designed to be secure, and it isn’t.

Related Posts:

  1. how to reduce the number of spam comments
  2. A spam bot loves me, what can I do?
  3. How to spam-filter a custom content type with the Akismet plugin?
  4. Getting trackback spam, even with trackbacks disabled
  5. How to block a someone from commenting?
  6. Reducing spammy user sign-ups
  7. How to reduce spam
  8. How do I permanently disable Pingbacks?
  9. What are all these spam subscribers doing here?
  10. How to disable WordPress trackbacks?
  11. How can I delete all my existing trackbacks?
  12. How can I delete all users which have never commented / have posted spam comments?
  13. Comment Spammed vs Trashed
  14. Contact Form 7 being hijacked to send spam? [closed]
  15. getting casino links on my woocommerce site [closed]
  16. How to locate & delete hidden pages on a site
  17. How is my non-published blog getting so much spam?
  18. Contact Form 7 Plugin send emails to my Gmail as spam [closed]
  19. Automated spam being caught in 2 posts. Can this be used to help get rid of spam on everyone’s sites?
  20. WordPress Site has 35K spam images
  21. WordPress Phone Verification
  22. Is the tagline area spam-bot proof?
  23. Spam email sent from my [email protected] account
  24. How to block spam blocks pointing to a same website [closed]
  25. WordPress VPS out of Memory Problem
  26. Is it possible to determine proxy based comments?
  27. How to track down a phantom contact form?
  28. How to get rid of spam forever?
  29. Spams, Scams on WordPress site – what to do?
  30. Auto block ALL IP’s indicated by Akismet?
  31. Simple comments spam solution
  32. WordPress and wamp sending “Delivery status notification Failure” to my inbox every 7 minutes
  33. Removing the “Website” Field from Comments and Replies?
  34. Experiences with adding Nonces to the comment form
  35. Tips for finding SPAM links injected into the_content
  36. How to deal with small scale comment spam on small commercial sites? [closed]
  37. What methods should be used to fend off splogs in a multiuser install? [closed]
  38. Local wordpress setup with SPAM in the incoming links dashboard section?
  39. Allow anonymous comments, but prevent spam [closed]
  40. How exactly does Bad Behavior plugin work?
  41. Is there any advantage to emptying comment spam?
  42. Why do I get email notifications about comments that WordPress has already determined are spam?
  43. Check spam in custom form – akismet
  44. What is the best way to avoid spammers registering to my blog?
  45. What do spammers gain by signing up as a user?
  46. Strategies for coping with hyperagressive spambots?
  47. Website is being flooded [closed]
  48. How Do I Prevent Junk Account Creation?
  49. Hacked website redirect, only on desktop, help with restoring it [closed]
  50. Something is generating spam pages on my site
  51. Buddypress Fake (non-bot) Users [closed]
  52. New users must comment when requesting username
  53. wp_redirection_404 table has grown to 7GB
  54. Invisible spam post in backend
  55. Auto delete WordPress users according to time
  56. How to make a secure blog that is completely private?
  57. Auto delete comment if Contains
  58. All users/comments suspected as bot? [closed]
  59. Spammers attacking my WordPress Site – Removing URL field from core? [closed]
  60. How to use a 3rd party library to send emails?
  61. Batch approve comments
  62. How do I filter users based on email address?
  63. Multisite signup spam troubles
  64. Is there a spam comment blocker that blocks IP addresses for a limited amount of time? [closed]
  65. CAPTCHA plugin where I can use my own images and ask my own questions? [closed]
  66. reCaptcha doesnt appear in comment (manual or plugin)
  67. Database hacked – random posts are modified
  68. Anonymous spam comments when only registered users can comment
  69. How to stop direct HTTP POST to a PHP script?
  70. Has anyone developed a anti-spam plugin to simply allow users to BLOCK whatever they wish to, but one that will also go easy on IP addresses?
  71. How to add captcha to publish widget
  72. Prevent Registration Where Role is None?
  73. Auto post Spams on my wordpress blog?
  74. Block registration by URL referrer?
  75. CPU overload spam – redirect link to wp-admin and new post
  76. WordPress site member verification emails going to spam on Outlook
  77. Block to accept and send email to specific domains
  78. Getting hundreds of spam orders in WooCommerce with failed stripe payment [closed]
  79. WordPress comment processing . Default unapproved comments detection before posting
  80. Spam Content Serving from old cached version of site?
  81. Block internal search queries with pre_get_posts and regex rules
  82. Why does my admin email address keep changing to something random?
  83. Using htaccess to prevent spam through wp-comments-post.php
  84. How can I automatically delete comments that contain a URL?
  85. I want to change the WordPress comments file
  86. Spam written by registred users
  87. Site has fake users registered with a similar pattern in username and email
  88. New accounts daily at WP Multi-User site under development, Analytics reports no traffic. What gives?
  89. Comment moderation
  90. Prevent incoming $_GET requests
  91. Hold a comment in the queue if it contains [X] or more links
  92. Contact form spam, without form?
  93. How do spam users register while I’ve only enabled registration by Gmail via Janrain?
  94. Auto-deleting comments that trigger the blacklist
  95. comments are going to spam
  96. How can I prevent wordpress from sending emails
  97. Can admin-ajax.php be used for spam purposes? And if yes, how to prevent that?
  98. How to hide and disable URL and email fields from comments?
  99. Fighting Spam – What can I do as an: Email Administrator, Domain Owner, or User?
  100. How to send emails and avoid them being classified as spam?

Leave a Comment