What have you done to validate that your site is not leaking SPAM. Does your firewall block ALL oubound port 25 traffic except that leaving from your authorized mail servers?
We block port 25 outgoing on our firewall and all internal mail must pass through out mail servers (the ones that were given -IP rep). All internal mail servers smart host route to them.
How do student systems send mail to the internet? Directly? Do you require them to connect to the university MTAs? Do you require SMTP Auth for them to send?
Students have to authenticate to get to their mail, and to send email from externally.
Backscatter watches for bounce back. What is your policy for mail addressed to invalid recipients? Do you REJECT (best) or Drop (OK) at the edge, or let the mail get to the core mail server and let it bounce (bad)?
This is the only thing I can think of as to why we were listed. We do have an issue where we do generate bounces. We were working of the (obviously old school now) principle that verifying recipients gives spammers an authoritive list of your users, and not sending bounce messages is bad because legitimate people don't know if their message got through or not. We are in the process of rolling out new mail infrastructure next week, that will address this issue. We are going for the lesser of 2 evils and verifying recipients.
In other words, until you clean up, you'll just get black listed again.
I totally understand this, I'm just trying to find out why we were added so I can fix it. I've looked through our outbound longs and I can't see any spam (so it doesn't look like we have a compromised account). The backscatter seems to be the only issue, but I can't really trust a site that charges money to remove you. If others had us listed I'd believe them, but as it is, I think they just want money.
Just looking for conformation so I can fix the issue.
Thanks for the help btw.