************ IMPORTANT - PLEASE READ ******************

Someone on one of our servers was recently the victim of Email Forgery. This happens when Spammers get a hold of your domain, and sends out hundreds and hundreds of spam emails in YOUR name. They will use email addresses associated with your domain name that may or may not exist, to send out email (i.e. fhasodiufg@yourdomain.com). They will use your mail account to send out spam to other harvested email addresses. (*Read note about Spam at the bottom of this page*)

This Email Forgery practice can get good servers like ours blacklisted as SPAM from major email providers such as yahoo, aol, msn, hotmail, etc.... This could prevent EVERYONE on our server from being able to send out mail.

--------------------------------------------------------------------------------

PLEASE TAKE THESE IMPORTANT STEPS TO PREVENT THIS:
Enable "Email Authentication" (DomainKeys and SPF) on your accounts.

- Log into your cPanel
- Under Mail, click "Email Authentication"
- If DomainKeys says Disabled, Click "Enable".
- If SPF says Disabled, Click "Enable";.

----------------------------------------------------------------------------------
About DomainKeys:
DomainKeys is an e-mail authentication system designed to verify the DNS domain of an e-mail sender and the message integrity.

About SPF:
SPF (Sender Policy Framework) is an extension of SMTP that stops e-mail spammers from forging the “From” fields in an e-mail. n order to use SPF, the domain sending e-mails must establish an SPF record that is published in DNS records. This SPF record should include the domains of any third-party e-mail service providers. When an e-mail is sent, the receiver's inbound mail server receives the e-mail and checks to see whether the domain name in the "From" field of the message matches any of the domains listed in the sender's SPF record. If there is a match, the mail is authenticated and delivered to the receiver. If there is not a match, the mail fails authentication and is not delivered. If you are using a third-party e-mail service provider to send e-mails, you need to ensure that you post the service provider's domains in your SPF record.

How do I know if I've been a victim of email forgery?
The most common first sign is when all of a sudden you begin receiving an abundance of "Mail Delivery Failed" type emails regarding emails you don't remember sending. If this is the case, contact us immediately and we will investigate.


NOTE REGARDING EMAIL LISTS / BULK EMAIL / NEWSLETTERS:
This is a reminder that when you signed up to host with Shoppe Pro, you agreed to abide by our "AUP" (Acceptable Use Policy), which prohibits sending out bulk email without prior permission given by Shoppe Pro. If you are going to send out newsletters or bulk email, DO NOT send it out with your Outlook or other email clients using your domain email address. Instead, please sign up with a newsletter or mailing list provider such as Your Mailing List Provider or Constant Contact to name a few. These services already have the necessary legal precautions in place to comply with the CAN SPAM Act, such as the ability for your subscribers to "opt out".


PREVENTING SPAM
"Email harvesting" is the process by which spammers can collect email addresses by running automated harvesting scripts to parse static web pages one by one, looking for strings of characters that appear to be email addresses. Such automatic programs can catch thousands of addresses in a very short time. If you have your email address listed in regular format on your site, it could easily (and probably will) get picked up by a spambot.

How do you protect yourself against spam and email harvesting?

DO NOT PUT YOUR EMAIL ADDRESS IN PLAIN FORM ON YOUR SITE.
Instead of using text like 'Contact us at me@mydomain.com', use your contact form to allow people to contact you instead. Lots of people really want to put their email address on their site, and that's fine. Just be prepared to deal with a lot of spam.

ENABLE SPAM ASSASIN:
There is a program in your cPanel under Mail called "Spam Assassin". If this is not already enabled, I would highly recommend enabling it. This should drastically reduce the level of spam you receive via your domain email accounts.

Thank you for taking the time to read this and I hope you will take these steps to ensure that we all stay as spam-free and whitelisted as possible!

(This will be posted in several boards throughout the forums)