Anti-relay or anti-email replay (Open-Relay)
Heuristic analysis
|
Anti-relay
|
Botnet / Zombie
|
Bounce
|
Dane
|
Denial of service - DDOS
|
DKIM
|
DMARC
|
DNSSEC
|
False-negatives
|
False positives
|
Bayesian filters
|
FOVI - President's scam
|
FQDN
|
Greylisting
|
Social Engineering
|
White lists
|
DNSBl blacklists
|
Malware
|
MTA / MDA
|
Opt-in
|
Opt-out
|
Ransomware
|
Scam / Nigerian419
|
Phishing
|
SMTP
|
Spam
|
Spear phishing
|
SPF
|
StartTLS
|
Virus
|
Teergrubing
|
Turing test
|
Definition of anti-relay
Anti-relay is a security system that detects and blocks e-mail from unauthorized or misconfigured relay servers. It can be used to prevent spam, email attacks and mail server abuse.
How does email security anti-relay work?
An anti-relay works by checking the email header to determine whether the originating mail server is authorized to send emails using your domain. If the server is not authorized, anti-relay can block the email or flag it as suspicious. Anti-relay can also use blacklists to block relay servers known to send spam or malicious content.
Application at Altospam
Relaying is a technique that allows third parties to use your mail server to send often illegal e-mails. This abusive use of your server generates a problem of availability and quality of service, and also engages the responsibility of your company, whose identity has been usurped. ALTOSPAM prevents relaying, as ALTOSPAM servers are positioned between the sender and your mail server, meaning that the sender can no longer be reached directly via the Internet.
Examples
Example of an SMTP transaction ending with an anti-relay rejection:
z03:~# telnet c03.altospam.com 25
220 c03.altospam.com ESMTP
helo toto.com
250 “HELO OK.”
mail from: toto@toto.com
250 “MAIL FROM OK.”
rcpt to: dsfsf@dsjfslkdjf.com
550 “Relay forbidden!”
Applications
A simple test (see above) can be used to check whether a mail server (an MTA) is open-relay or not. Some blacklists automatically identify open-relay servers.
1 in 2 companies was attacked in 2022
We help companies to protect themselves against external attacks from phishing , spear phishing, spam, ransomware , … We offer free analysis of intrusion attempts on your email for 15 days.
