So what do you do when you think someone is spoofing your email address and you actually know where to find them?
This morning I received an email from a POSTFIX email server about an error with the email. Interestingly enough just by reading the header info it’s pretty obvious someone at this host is spoofing my email. Here’s the info that came from the server:
This is the Postfix program at host mail.od.ua.
I’m sorry to have to inform you that your message could not
be delivered to one or more recipients. It’s attached below.
For further assistance, please send mail to
If you do so, please include this problem report. You can
delete your own text from the attached returned message.
The Postfix program
: cannot access mailbox /var/spool/mail/loyd for user loyd.
error writing message: File too large
Reporting-MTA: dns; mail.od.ua
X-Postfix-Sender: rfc822; firstname.lastname@example.org
Arrival-Date: Mon, 12 Mar 2007 17:15:16 +0200 (EET)
Final-Recipient: rfc822; email@example.com
Diagnostic-Code: X-Postfix; cannot access mailbox /var/spool/mail/loyd for user
loyd. error writing message: File too large
Date: March 12, 2007 9:13:04 AM PDT
Subject: Îôèñ ñäàäèì â Îòðàäíîì 5
The mail host, mail.od.ua is a Russian hosted free email client which is unfortunate as I don’t believe I’ll be able to get any recourse from the host. It would be nice to have this person banned and, if possible, prosecuted. I’m no pro at reading email headers, is there enough info here to point to a singular account? Maybe from the queue ID?