Questions tagged [spam]
Unsolicited e-mail, comments or posts, often sent out in large volumes; possibly but not necessarily commercial in nature
1,411
questions
0
votes
0
answers
4
views
Should smtp_helo_name always be the same as your MX record?
I can't seem to satisfy HELO checks on SPF records in all cases. I have an SPF record for my domain like this:
"v=spf1 mx -all"
The MX records in the zone are:
mx0.mydomain.org.uk. ...
- 507
0
votes
0
answers
7
views
Why does the SpamAssassin not insert some headers?
Trying to configure SpamAssassin 4.0.0 with Postfix 3.7.10 on Debian 12. I'm using spamass-milter 0.4.0. My /etc/spamassasin/local.cf has the following entries:
required_score 5.1
...
- 1
0
votes
0
answers
37
views
Configure fail2ban to parse multiple log lines, e.g. Postfix mail rejects
I want to to block local authenticated mail users who generate spam, i.e. disable their SMTP access for a while as one of several countermeasures against hijacked accounts and malware.
To accomplish ...
- 149
1
vote
0
answers
59
views
My email server IP is blacklisted, how can I resolve it?
The IP of our email server 154.116.254.147 was added to the UCEPROTECTL2 blacklist. The error message we received is as follows:
"I am deeply sorry, but I was not able to deliver your mail to the ...
2
votes
0
answers
65
views
how to protect postfix mail from gmail spam [duplicate]
I am experiencing an issue with the BDIX (Local Bangladeshi server) server.
I have set up a mail server on the local BDIX server using postfix with aapanel.
I have configured SPF, DKIM, and DMARC in ...
1
vote
0
answers
23
views
Postfix configuration to block spammer domain isn't working
I have an Ubuntu 22.04 cloud VM with Postfix 3.6.4-1ubuntu1.3 installed that I largely use for receiving e-mails sent to addresses at my personal domain that I provide when signing up for less-...
- 117
0
votes
0
answers
24
views
SPAM and SPOOF emails from postfix mailserver
I created and configured a postfix server, basically its an smtp-only server. I added the domain i want to use in postfix main.cf, and also added other domains in virtual file. I installed configured ...
0
votes
0
answers
70
views
What are these DMARC failures about?
I've been toying with dmarc off and on for the last couple of months. Currently I have no policy set. I am using URIReports for report collection and analysis. Most of the results are good. We use ...
- 103
0
votes
1
answer
80
views
postfix bounce_queue_lifetime and maximal_queue_lifetime
i have done a lot of research but still cannot clearly understand what is the difference between postfix bounce_queue_lifetime and maximal_queue_lifetime in main.cf. Although I've read a lot of ...
- 1
0
votes
0
answers
75
views
Can I ignore certain visitors when using Goaccess?
I want to use goaccess to see how many real visitors my website is getting.
Unsurprisingly my logs are filled with traffic from bots so I'm looking for a way to filter that out.
In the interests of ...
- 322
0
votes
2
answers
163
views
How to detect non-latin scripts in email subject?
On my mail server running Postfix, I want to reject mails using some non-latin scripts in their subject, in particular Arabic and Cyrillic since none of my users (family) speak languages that use them....
- 266
0
votes
1
answer
104
views
Weird email spam issue. Google Domain Exchange email server
We have a client who is blocking our email domain.
Their IT wrote this to us. I've never seen this be an issue before.
You are hosted on Google but have entries referring to Microsoft email protection ...
- 101
0
votes
2
answers
104
views
Check incoming email adresses on exchange server
We are using Exchange Server with Outlook, and a CMS system to manage our customer's Email addresses. The CMS can export the email address list and we could import it somewhere to outlook/exchange, if ...
- 1
0
votes
1
answer
99
views
postfix sending only short messages ( emails ) but not long messages?
when I am sending a short email from "[email protected]" or any other email acc , the message is received well in the inbox of Gmail , hotmail etc , but if I send the message again with long ...
- 209
0
votes
2
answers
201
views
Spammers are using my mail server to send out emails
Lately spammers are using my mail server to send emails to different addresses.
For example, a colleague of mine received an email that was supposedly self-sent (it was not).
Looking at the ...
- 1
-2
votes
1
answer
62
views
Spam filters: IP address with no history v. good history [closed]
Zoho gave me an IP address with no history this week. Senderscore.org says there's insufficient data to evaluate it. At other times Zoho has assigned me an email sending IP with a fair or good score.
...
- 3
0
votes
1
answer
164
views
Amavis outbound mail filter for Postfix?
Running Postfix on Ubuntu 22.04, I'd like to make sure all outgoing mail originating from the server (eg mail forms on websites and stuff) is filtered for spam and malware. I'm using Amavis, which is ...
- 507
1
vote
2
answers
420
views
Email message headers pass SPF check after failing earlier SPF checks. Will this result in spam?
I have an issue where email is being marked as spam by Gmail/Google Apps systems.
When reading the mail headers, the most recent SPF check in the mail chain passes, but earlier checks fail. That is, ...
- 181
0
votes
2
answers
582
views
Spammers slipping through SPF
One of the subscribers on the mailhost I run has been receiving scads of spam mail "from himself." With SPF set up and validated on the domain (wickenburg.us) this should not be happening. ...
0
votes
1
answer
397
views
Where can i find explanation of a SpamAssasin scores like SPOOFED_FREEMAIL?
I can define custom scores for SpamAssasin, default one seems to be zero and it makes me wonder if i should raise it, but before doing so, where can i find detailed information on how these particular ...
- 536
0
votes
0
answers
24
views
Server still sending spam despite closing relay with postfix [duplicate]
I have an Ubuntu 20.04.5 LTS with multiple Wordpress website running on Nginx.
I installed postfix and configured it to stop relaying emails.
I have an antivirus freshclam running.
Someone or ...
- 101
0
votes
0
answers
79
views
Multi-message anti-SPAM filter in SpamAssassin
My vendor's database has been stolen and I started to receive spam messages in a huge amount. It is being sent by spambots / spam scripts, so sender and recipient email addresses are always fake. The ...
- 163
0
votes
0
answers
204
views
In Postfix, how do I block all clients whose reverse DNS is in a domain?
I just got hit by a spammer sending spam through my mail server from multiple IP addresses in various netblocks all with a reverse lookup ending in googleusercontent.com. (I haven't figured out how; ...
- 101
0
votes
1
answer
313
views
How to make a mail server spam "proof"
I work for a German company that sends several thousand emails to our customers every day. Our employees send their emails via Microsoft 356, but the system does not use a mail server and sends emails ...
- 15
0
votes
1
answer
691
views
Spamassassin not scoring correctly
I have Spamassassin running on a Ubuntu/Plesk server. It was working relatively well until recently but now seems to be letting through random spam messages.
These messages seem to trigger plenty of ...
3
votes
2
answers
722
views
Changing hostname for the purpose of email delivery
I have email delivery issues, and MXtoolbox says "Reverse DNS is not a Valid Hostname". I have A and AAAA records for domain.com and mail.domain.com. The data center has set up reverse DNS ...
- 147
1
vote
0
answers
139
views
Include matching rspamd rules in mail headers
Spamassassin has a feature to include the matching rules in the headers of mails flagged as spam, so one can see why the mail was classified as spam and possibly adjust or create mailbox filters that ...
- 1,733
0
votes
0
answers
150
views
Fail2Ban redirect instead of drop
I'm trying to configure Fail2ban to redirect instead of banning, I've found plenty of posts about redirecting to a different port for HTTP traffic to display a different webpage, but I need to ...
2
votes
1
answer
216
views
"Non-Open-Mail Relay" Postfix / Dovecot are relaying anyway; Mis-configured or CRACKED? Plus, presently blocked external users need access too
CRITICAL UPDATE
While working on this, there'd been no spam relayed for over a single day so I left it up and overnight, TWO emails got relayed! ACK!
Here they are, from my tail / grep commands (...
- 1,298
-1
votes
1
answer
37
views
Long established Postfix / Dovecot environ had to be rebuilt, became an open relay; How do I know fore sure it's fixed, and, if not, fix it fast?
Because it's bad form here to ask multiple questions in ONE entry, I'll be asking about specific Postfix and Dovecot entries, however this nightmare has been going on since about January 19 and it's ...
- 1,298
0
votes
2
answers
868
views
How to disable the default RBLs used by rspamd?
I'd like to use an RBL in rspamd without using all the preconfigured RBLs, but it seems that the configuration in /etc/rspamd/local.d/rbl.conf can only add new lists, not remove the default ones.
The ...
- 1,733
1
vote
0
answers
73
views
Server getting spam requests by the same IP address opening Apple App Store
I have a simple docker-containerized nginx application. I'm getting spammed with requests when I view the nginx logs via docker-compose logs -f webserver (this is thousands of lines but I'm leaving ...
- 11
0
votes
1
answer
192
views
How to improve sender score for personal mail server
Background:
I have an own domain and an own mail server that sends out the mail for this domain. The users are only my family so there are less than 10 users with probably 20 mails sent per day.
...
- 1,013
0
votes
1
answer
690
views
spamassassin and subject utf base64
I have a problem with some spam messages with the subject field encoded in utf8 base 64 and weird characters used to fool the filter rules
example:
raw subject of incoming email
Subject: =?UTF-8?B?...
- 61
0
votes
1
answer
56
views
Increase in spams through website contact forms after change of server
I recently moved my website from Hostgator to an Amazon Web Services' EC2 instance. From a few days later people/bot started posting spam messages in the forms that are on the website.
Is there ...
0
votes
0
answers
47
views
Rule - Check for an email with an image tag
I hate spammers phising emails, it doesn't contain anything but an image
with in the body.
I'm wondering if there is a rule, I can check if the email body contains only and only <img> and no ...
- 191
0
votes
0
answers
530
views
Sendgrid IP Address Consistently Blocked on RATS-Spam
Overview
For our application, we use SendGrid to send emails to many of our users. Recently over the past few weeks, our SendGrid IP addresses have been added to the RATS-Spam blacklist multiple times....
- 1
0
votes
1
answer
628
views
Completely block any outgoing emails
I have a server with Postfix, running in Docker. The server is supposed to only receive emails, not send them.
I added the following iptables rules to try to block anything getting out from port 25:
...
- 103
0
votes
1
answer
108
views
Managing SPF with multiple users on an email provider
I'm using Ipower for web and email hosting. I was recently made aware that SPF and DMARC were set to neutral, causing all of our outgoing emails to go to spam. I updated both records and they worked ...
- 9
1
vote
1
answer
3k
views
Spamhaus is blocking several customers since a couple of days?
I received a couple of complaints from customers that got their emails rejected.
I haven't changed my config, so this must be an issue with spamhaus.
I'm running Postfix with these settings for ...
- 353
0
votes
1
answer
865
views
Publishing Exchange Server public IP address in a hybrid Exchange setup?
I'm currently using the Hybrid Exchange Online and Exchange Server OnPremise setup.
I have included the IP addresses of all my Exchange Servers in the below TXT record, I wonder if it is really ...
- 1,305
2
votes
1
answer
4k
views
DMARC record is valid, but your domain's None/Quarantine policy does not yet protect it against email spoofing and phishing
People,
Using the website: https://easydmarc.com/tools/dmarc-lookup?domain=name.com
I got this error:
DMARC record is valid, but your domain's None/Quarantine policy does
not yet protect it against ...
- 1,305
7
votes
2
answers
1k
views
How can I create and update the existing SPF record to allow more than 10 entries?
How can I include another SPF record if my existing domain already has 10 lines of SPF records in the TXT record?
I wanted to add these two:
include:mailgun.org
include:sendgrid.net
This is my ...
- 1,305
0
votes
0
answers
227
views
Spam URL block not working with Cloudflare
Quite confused...
Apache Access Log is constanmtly showing spam URLs being called after a Wordpress website hack. I think I have removed the hacking, but something is still calling these spam URLs on ...
- 153
0
votes
1
answer
162
views
Postfix - Eliminate sender domain based on recipient email address
Does anyone know of a way, using Postfix, to block a domain as soon as it tries to send to a specific recipient address?
Spam typically goes to several recipients in my organization. Some email ...
- 155
0
votes
0
answers
636
views
DKIM: validation error: error:RSA_padding_check_PKCS1_type_1:invalid padding
We receive a lot of spam on our servers from 3rd party servers and often this spam includes the email header such as:
DKIM: validation error: error:0407008A:rsa routines:...
- 217
1
vote
1
answer
638
views
Local Mail Transport Protocol (LMTP) spam?
Our sever receives a fair bit of spam, most of this is standard spam but looking at the headers of some spam we get directly it seems to show that the mail is received by the LMTP (Local Mail ...
- 217
0
votes
1
answer
947
views
How to prevent 3rd party domains using our server/domains for email envelopes
We recently received a whole bunch of notification emails stating an email that apparently originated from our servers was blocked for being spam, but we can't find the source emails on our server, so ...
- 217
1
vote
0
answers
316
views
Some of my emails do not get to clients without a warning
I send emails from the web interface of Gmail Workspace (business email). Most of the clients receive my letters just fine. But some of the clients only receive messages with text and images.
Messages ...
- 111
0
votes
2
answers
2k
views
How to prevent unauthorized relay of mail in Postfix
It seems that our mail server is being used to send spam.
The sender of the email is a spoofed real account on our server.
There is no email in the sent history for that account.
I would like to ...
- 3