Spamassassin
Right, here's a problem for the postfix / spamassassin / procmail gurus out there.
Recently, a spammer based in China, one Pang Jinbo (or one of his users) has seen fit to spoof my subdomain as the reply-to and return-path address for his spam emails, advertising a website which sells Sildenafil Citrate (Generic viagra). Having done my damnedest to alert the Chinese authorities to this, and alerted Pfizer corp to the illegal use of their trademark, I'm now faced with the problem of dealing with dozens, or possibly hundreds, of admin emails from emails from Jinbo that have bounced - bouncing back to $made_up_username@$mysubdomain.$myisp.co.u
Now, ideally, what I need to happen is when a bounce mail comes in from a given mail daemon / postmaster replying to a non-existant user, I'd like it to make a log entry of 1 line saying who's sent the bounce mail, and forward the mail back to postmaster@their.domain saying "Nonexistant user - please check your mail headers properly before bouncing spoofed spam mails to me." or suchlike - and for it to do that once and once only, and further bounces going straight to /dev/null without log entry or reply bounce, so as to avoid setting up a bad user ping-pong loop.
Also, I'd like to set up a new test in Spamassassin so that any mails mentioning penises, sildenafil citrate, or viagra just go straight into my spambucket.
How do I go about this, and are there any considerations I need to think of in addition to this?
Recently, a spammer based in China, one Pang Jinbo (or one of his users) has seen fit to spoof my subdomain as the reply-to and return-path address for his spam emails, advertising a website which sells Sildenafil Citrate (Generic viagra). Having done my damnedest to alert the Chinese authorities to this, and alerted Pfizer corp to the illegal use of their trademark, I'm now faced with the problem of dealing with dozens, or possibly hundreds, of admin emails from emails from Jinbo that have bounced - bouncing back to $made_up_username@$mysubdomain.$myisp.co.u
Now, ideally, what I need to happen is when a bounce mail comes in from a given mail daemon / postmaster replying to a non-existant user, I'd like it to make a log entry of 1 line saying who's sent the bounce mail, and forward the mail back to postmaster@their.domain saying "Nonexistant user - please check your mail headers properly before bouncing spoofed spam mails to me." or suchlike - and for it to do that once and once only, and further bounces going straight to /dev/null without log entry or reply bounce, so as to avoid setting up a bad user ping-pong loop.
Also, I'd like to set up a new test in Spamassassin so that any mails mentioning penises, sildenafil citrate, or viagra just go straight into my spambucket.
How do I go about this, and are there any considerations I need to think of in addition to this?
