How to stop backscatter email spam
Solution 1:
Personally, I think you can do something about people spoofing your address; I strongly advocate SPF, with a strong policy on unapproved hosts (-all
).
I know that not every ISP out there checks SPF on incoming email, but a surprising number do, and spammers are intelligent - since they're picking a forged sender in order to maximise delivery, they'll avoid forging a sender who will automatically be rejected by a significant fraction of ISPs, even though that fraction is well below 1.000.
Since I started publishing strong SPF records, I've had almost no backscatter at all.
You can find more out about SPF at www.openspf.org.