Goodbye mygbiz

Google seems to try to invent new and interesting ways for spammers to spam me (and many others).  I’ve still not worked out a good way to block “fake googlegroups” which follow this method:

  1. Make new fake gmail login
  2. Make new fake google group
  3. Add lots of people’s email addresses to the group
  4. Send lots of junk to these people
  5. Repeat when it gets closed down

I’m not sure why  groups aren’t opt-in. A rather simple and standard way to stop this exact problem.

Anyhow, the next new spammer enablement that the nice folks at Google have come up with is the mygbiz.com domain. These are temporary email addresses you can use when setting up Google apps. The only thing I have ever seen from them is spam. So I thought I’d try to report some to Google.  After looping around several help screens that were, despite their name, very unhelpful, I’ve come to the conclusion that Google isn’t too serious about fixing this problem.

If you have postfix, the solution is very simple:

  1. vi /etc/postfix/access_sender
  2. Add a line like “mygbiz.com  REJECT”
  3. postmap /etc/postfix/access_sender
  4. postfix reload

I find the results to this method far superior to trying to get Google interested in being responsible for a domain they run. If you want to use google apps then spend the $50 and get a domain. Alternatively don’t use something that spammers abuse.

Does it work? You bet it does!

Sep 18 23:26:38 elmo postfix/smtpd[19013]: NOQUEUE: reject: RCPT from mail-ye0-f208.google.com[209.85.213.208]: 554 5.7.1 <[email protected]>: Sender address rejected: Do not send from mygbiz.com domains; from=<[email protected]> to=<ME@MYDOMAIN> proto=ESMTP helo=<mail-ye0-f208.google.com>


Comments

6 responses to “Goodbye mygbiz”

  1. Link to this blog post in the error message, to let people know why you don’t accept that domain.

    1. That’s a really good and simple idea, thanks! I’ll make that change.

  2. Crap, this does not block the Google spammers. I used your instructions per your above instructions.

    Carl

    1. It doesn’t block all spam from Google, just one more way Google has enabled spammers to spam you. For example, the method where they create a bogus group then “invite” a list of people and spam them will not be fixed using this method. I still see that the spammers are trying, even last night I can see:

      Oct 17 23:18:00 elmo postfix/smtpd[22111]: NOQUEUE: reject: RCPT from mail-ie0-f207.google.com[209.85.223.207]: 554 5.7.1 : Sender address rejected: Blocked, see https://enc.com.au/2013/09/19/goodbye-mygbiz/; from= to= proto=ESMTP helo=

Leave a Reply

Your email address will not be published. Required fields are marked *