How to Resolve the Email Spoofing To resolve email spoofing there are two methods, creating a catchall or an SPF record. The catchall (Default Address) can resolve the issue only on a short term basis and is not recommended to be used otherwise. Creating an SPF record would be best for a long term solution as the DNS would catch unverified users trying to send email for your domain and prevent it from being sent out.
Partial Solution If you have Default Address enabled, you can set every catchall to :fail: no such address here. This will stop you from getting the bounceback, but the real problem may not be solved.
If you do not have Default Address enabled, you will not need to worry about making this adjustment since our system is automatically set to return messages with the :fail: no such address here response. Full Solution You will need to create an SPF record to resolve the issue fully. An SPF record is an entry added to the DNS zone for a domain. This record verifies that a user has permission to send mail from a domain, preventing email from being spoofed for your domain.
Note: GriotSites automatically creates an SPF record for all Shared Hosting accounts. You can check the existence of your SPF record at nwtools.com by selecting the DNS Records search and submitting your domain name. Then look for a TXT record with "v=spf1 ..." as the value. How to Create an SPF Record in cPanel Creating an SPF record will verify that a user has permission to send mail from a domain. This is used to prevent email spoofing for your domain. There are several methods for having this record created using cPanel.
Please note that SPF records only work if your mail service authenticates outgoing emails. This also means that anyone who uses a mail server which does not respect SPF records will be able to send spoof emails. Currently, the SPF record is widely used by popular hosting and email companies such as GriotSites.com, Google/Gmail, Yahoo, Hotmail, etc. Automatic SPF Record Creation This is the easiest method for creating an SPF record in cPanel. It will also show whether or not an SPF record is already in place or not.
•Log into cPanel. •In the Mail section, click the Email Authentication icon. •Scroll Down to the section titled SPF. •Click Enable. Your SPF record will then be generated and added to the domains listed in your cPanel.