How can I protect against bounce spam?

What Causes Bounce Spam?

Bounce spam happens when a spammer tries to deliver a spam message with your email address in the From field to an unknown address. The mail server accepts the message for delivery but then finds out that the recipient does not exist and sends a bounce email to your email address because it wrongly believes you are the originating sender. Because these bounces do not come from spamming servers, but from legitimate servers, they are very hard to block by any spam filters.

This can be an annoying problem if your mail servers are not properly set up. The SMTP protocol is a very simple protocol that was defined in 1982. Spam was not yet a problem and to keep things as simple as possible, no security measures were implemented in the protocol itself. One result of this is that there is no verification that the "From:" address in an email message actually belongs to the sender.

To try to avoid spamfilters, spammers typically use random email addresses as fake senders. This way they can avoid any simple spamfilter that blocks based on the sender email address. It is important however that the email address they use as a sender does exist, since spamfilters can apply a "sender verification check" to ensure that the sending address itself exists.

SpamExperts applies advanced methods to identify and block "bounce-spam".

Properly set up mail servers will not cause bounce spam and directly reject the message with a 5xx error code when the spammer tries to deliver it. Unfortunately there are many legitimate mail servers that are incorrectly set up.

Block list filtering rules can be configured to block combinations of message data which are being received incorrectly. All messages which are received as spam should be reported via the Train Spam feature.

Catchall Domains

If you have configured your email system to accept all email sent to any address @demo-domain.invalid, this is called a "catchall domain". The main advantage for you is that you won't have to create a separate mailbox for each address that should work.

Be Advised: The problem however is that if spammers detect that your mail server claims to accept email for any address, they can easily generate random email address and end with @demo-domain.invalid (your domain name) to generate millions of different "valid" email addresses! It's therefore highly recommended to disable the email catchall to avoid spammers from abusing your domain and also generate fake senders for their spam messages.

SPF / DKIM

By setting a Sender Policy Framework (SPF) record for your domain, you reduce the attraction for spammers to use your domain for sending out email. Also signing your emails with a DKIM certificate should further reduce the attractiveness to spoof your domain name for outgoing spam.