Questions tagged [spam]
Unsolicited e-mail, comments or posts, often sent out in large volumes; possibly but not necessarily commercial in nature
1,411
questions
1
vote
0
answers
2k
views
Linux history filled with priv_escl_start and _end after security changes
We are going through a process to make our linux servers more secure following a scan. I notice that on some of the machines, we now have lines like:
LANG=C; printf "priv_escl_start_%s" "[random 8 ...
0
votes
1
answer
112
views
Drop newsletter emails with Postfix
There is an option, i have seen in Fortimail, that makes you able to filter/drop all newsletter emails.
I don't understand how Fortimail detects these type of emails.
And I am keen to know whether ...
6
votes
1
answer
2k
views
Yahoo blocked emails after changing mail server public IP address
We have two exchange edge server and we want to change their public IP addresses. Changing one of the server IP addresses (and related DNS records) was done successfully and emails are delivered to ...
0
votes
0
answers
36
views
DKIM and SPF for Different Server [duplicate]
My situation like the following:
Web server hosted in Google Cloud with domain name lets say: example.com
Mail server hosted in Linode (lets say in server name: server.myserver.com) using cPanel with ...
0
votes
1
answer
105
views
Mailserver sufficient to pass as non-spam with Gmail
I am coming to the point of thinking this is beyond my ability to accomplish.
I have repeatedly built new servers on Digital Ocean (3 so far) with Postfix, Dovecot, DKIM, pretty much everything out ...
0
votes
1
answer
1k
views
How to cut-off spam (postfix+amavis-new)
I'm using postfix+dovecot+amavis-new+clamav+spamassassin+postgrey on my Ubuntu based VPS.
Since some days i'm receiving a lot of spam, with a low level of spam score in headers.
Common for all spam ...
0
votes
0
answers
20
views
Email piping through to Junk folder
I have a personal business email that I know sometimes pipes to junk, even if I've shared correspondence previously with the recipient. I'm doing all I can to fix this but in the meantime I've set up ...
6
votes
2
answers
1k
views
Postfix: ACCEPT if RBL and SPF checks pass, DUNNO/greylist otherwise. How to do it?
I would like to accept all clients that pass RBL and SPF checks (and possibly some checks, but these are minimum requirements for me), and greylist those who don't. When a client passes the SPF check (...
1
vote
1
answer
2k
views
How to Block a Domainname with random TLDs in Postfix?
Can anyone please tell me how to reject all domains with a particular name, but regardless of the TLD? I want to block all mail coming from domains named bulksender, like bulksender.com, bulksender....
1
vote
1
answer
2k
views
I have set up Spamassassin. Only outgoing emails are scanned by spamassassin and not incoming ones
I have set up spamassassin with postfix. The problem is I tried testing the spamassassin default filter by sending the GTUBE spam test email from gmail to my mail server. Spamassassin is not even ...
1
vote
1
answer
535
views
Emails going to spam even though DKIM and SPF records set up and rDNS too in EC2. I am usinf postfix and dovecot [duplicate]
I have set up my own email server in AWS using postfix and dovecot. I have also set up DKIP and SPF and DMARC records. Now the problem is when i send an email from [email protected], its not flagged ...
0
votes
2
answers
2k
views
How to REJECT email using SpamAssassin
Is it possible to reject emails, like it is done in Postfix using header_checks, using SpamAssassin? Normally, the SpamAssassin only adds the spam flags and by default adds the word SPAM in the ...
1
vote
2
answers
717
views
Logwatch Emails marked as spam; how to stop reverse DNS on bot hosts?
Is there a way to alter the Logwatch settings such that it stops performing reverse dns name resolution on all the hosts which tried to probe the server or were blocked?
These URLs are causing the ...
0
votes
1
answer
92
views
Linode (Debian) box with multiple web apps - is it possible to send emails from multiple domains via sendmail?
I have a Linode instance in which I'm going to host several small-ish LEMP apps. Each of these apps need to send emails to users (mostly for account registration... forums/comments and whatnot). I'd ...
1
vote
0
answers
45
views
Reject email if From address matches and if content matches as well (Postifx)
I'm trying to setup a rule in my postfix configuration where I check the from address and the email content.
My idea is to REJECT mail if:
From: [email protected]
Content: Hello Test
Is there anyway to ...
0
votes
0
answers
707
views
How to block email if sender doesn't match reply-to address? [postfix]
Currently our company is getting more and more spam. For a small company we had to block all incoming spam from chinese IPs, which blocks around 500 spams per week which is alot, as we're a local ...
2
votes
2
answers
8k
views
How to read this DMARC report? Why does Yahoo still reject mails from my server?
I've got hMailServer set up on my server, which bulks-mails a newsletter to an opt-in subscriber base. I have set up DKIM signing, a SPF record explicitly giving my server permission to send email on ...
0
votes
0
answers
41
views
Email marked as spam if it contains specific email address
We have an email address that causes us quite some headache. Sending an email from this account (via webmail) causes the message to randomly end up in the recipient's spam box (unfortunetely this is ...
-3
votes
1
answer
146
views
Does anti spam software block IP addresses of large smtp providers? [closed]
Does anti spam software routinely block IP addresses of large smtp providers such as Mailchimp or SalesHandy?
0
votes
1
answer
535
views
What is the best way to block spam referrers in an Azure web app?
I have a very low traffic Azure web app written in .net for sharing programming 'books' using a new medium that I created. Currently, I am really the only one creating content on the app.
For the ...
1
vote
1
answer
2k
views
How to stop Backscatter (NDR) from spoofed Mail address?
some one is sending mails from a spoofed mail account from our domain ([email protected]) to hundreds, sometimes thousands of non existant russian E-Mail addresses.
The web hosts send out NDRs ...
0
votes
0
answers
123
views
EC2/EIP email flagged as spam
My company is delivering email out of an ec2 instance using Postfix, but messages are sent to the spam folder in all major providers (Gmail, Outlook, Yahoo). We have an EIP associated with this ...
1
vote
0
answers
121
views
A SpamAssassin filter for empty HTML part
A new kind of spam's been getting through my defenses lately with the following common characteristics:
The message itself is of type multipart/mixed with two parts.
The body of the spam is in the ...
8
votes
1
answer
668
views
How to deal with Microsoft and Google agressive spam policies?
Introduction: I have run my own mail server for more than 10 years, and I never had any problem with Gmail, so far. But I needed to complain regularly (like every year) to Hotmail, because they were ...
0
votes
0
answers
100
views
Postfix only forward catch all to stop spam
I have two catch all addresses set to forward to a gmail account and today i got a message from my hosting saying that they have blocked port 25 on my vps due to it sending spam out.
how would i only ...
0
votes
0
answers
325
views
Mail issues only with Google App domains
I have a local mail server set up. It is connected via a dedicated IP (with an appropriate PTR record). I have DKIM, DMARC, and SPF set up.
My domain has been added to Google's Postmaster Tools and ...
1
vote
0
answers
3k
views
Abuse report for an email message from amazonses.com
I'm an AWS SES user.
I'm getting emails from [email protected]
with this message:
This is an email abuse report for an email message from amazonses.com
Based on this Why do I ...
0
votes
1
answer
5k
views
Google blacklist removal
One of the email accounts on my Debian server has been compromised (too weak password set by a client) and it was sending countless spam messages over three days.
Once I've found out that out (, I'...
0
votes
1
answer
236
views
Wordpress Hack on linux apache server - no detectable changes in files [duplicate]
I have a weird hacking case with one of my wordpress sites. It's a small site, basically shows 5 blog posts on whether or not the office will be open/closed. It's not too complicated or anything, but ...
0
votes
0
answers
40
views
What email headers are useful for determining if my email account has been compromised?
I've recently received a lot of spam replies (automated replies from users, and rejections from mail servers) to a certain email address. I've taken the obvious precautions of changing passwords, and ...
2
votes
1
answer
158
views
Too many bad bots killing website
Everyday around 2-3pm, huge amounts of bots are coming to my website and they just kill it. Few days ago it was just 2-3 IPs so I could easily block it, but today more than 600 bots came and kept ...
0
votes
1
answer
2k
views
Prevent intruders to send emails from myself (Postfix)
recently we have been victim of a simple phishing.
Yet simple but it can be scary for some users, I don't know how to block this.
The intruder connects via telnet to our mail server and sends ...
2
votes
2
answers
1k
views
Back up Rspamd Spam/Ham databases
I use Rspamd to filter my emails from spam.
The spam filter has already been trained with more than 300.000 emails.
Is there a way to save this "knowledge" or transfer it to another system?
1
vote
0
answers
369
views
Set Postfix to require authentication to send to own domain from own domain
My postfix setup (running in the cloud) successfully prevents relaying, requiring authentication to send to a non-local domain.
However, spammers are sending to [email protected] from someotheruser@...
0
votes
1
answer
73
views
Emails still going to Gmail & Hotmail spam after removing host from several blacklists
As I mentioned briefly in the subject the IP address of our mail server got blacklisted a while ago. One of the sites on the server got hacked, which resulted in the addition to a couple of blacklists....
0
votes
1
answer
465
views
Something sends emails to [email protected] permanently
I'm watching multiple lines in maillog for the last few days
Feb 26 06:00:17 d3355 sm-mta[2682]: x1L5tNWu013205: to=<[email protected]>, delay=4+21:04:54, xdelay=00:00:00, mailer=esmtp, pri=...
1
vote
1
answer
435
views
How to get postfix to check all 'Recieved:' headers against an RBL?
I have several rbls listed in smtpd_client_restrictions, but this only checks the client IP against the RBLS. Is there any way to get postfix to check each Recieved: line against the RBL like ...
0
votes
1
answer
742
views
Gmail rejects messages from new exim4 setup
I have problem with delivering mails to GMail from a new server setup with configured exim4.
Messages sometime passed to gmail spam folder. But sometimes it rejects immediatelly. I have attached a ...
-2
votes
1
answer
121
views
Abuse report for spamming...abuse report [closed]
Few weeks ago, i activated on my server on automatic abuse report mail when someone try to brute force my SSH, i did it because i got an average of 3000 spamming IP each weeks.
But today, my ISP send ...
1
vote
2
answers
319
views
Is this correct for a SPF record based on our setup?
Our company has a SMTP server that sends mail out on behalf of our customers. So a customer would log into our system, go to a specific section, and can fill out a form to send an Email to whoever ...
0
votes
2
answers
428
views
Spammers can send me mail from my own email address with a different IP
I have checked everything and, normally, my server blocks all spam messages, but not this one. It does not originate from our servers but they get relayed to our company with our username. It looks ...
1
vote
1
answer
1k
views
How to turn on "Release & Allow Sender", and "Block" from End-user spam notifications in EOP
https://docs.microsoft.com/en-us/office365/securitycompliance/configure-end-user-spam-notifications-in-exchange-online states that the spam notification report to users provides the following choices:
...
0
votes
1
answer
216
views
Best way to restrict/manage PHP apps to use my postfix?
I want to allow PHP apps to send mail but under very restricted conditions.
And I don't want to allow sendmail-like command for PHP apps (I'm using chrooted PHP and it's too much headache), thus I ...
0
votes
1
answer
567
views
Combine 2 spf records into 1
I have 2 spf records for my email example.com
The first one is from my hosting provider. I DO send and receive email through my hosting provider. Emails from here do not go to spam.
"v=spf1 ?include:...
8
votes
1
answer
5k
views
Not receiving any RUF DMARC reports (forensic) but are getting RUA (agg reports)
For about 5 days now, i have been successfully receiving several DMARC RUA (aggregate reports) reports from a few ISPs, however i have yet to receive a single RUF message/forensic email, even though ...
2
votes
2
answers
1k
views
How to deal with outgoing spam flooding with Postfix
I have one Postfix SMTP server with hundreds of users, which are using it to send e-mails as authenticated users.
Sometimes one account is hacked and thousand e-mails become to go out from the SMTP ...
0
votes
1
answer
1k
views
How to disable EOP for the whole organization in our exchange hybrid environment?
set-MailboxJunkEmailConfiguration -enabled $false only disable the EOP for mailboxes. it cannot ensure new mailbox's EOP is also disable. So what is the solution? Thanks.
1
vote
0
answers
72
views
Postfix - External incoming mails with company domain
We use postfix as internal and external relay and Exchange inside the organization. Our company is receiving a lot of SPAM and phising mails whose Sender is our own company domain.
Searching Exchange ...
1
vote
1
answer
743
views
Spoofing/Spam received from GSuite alias accounts
The company currently have 2 domains registered: "dom1.com" and "dom1.com.ex". "dom1.com" is hosted and is the main domain associated on our GSuite account to create user accounts to send mails, "dom1....
0
votes
1
answer
53
views
why two spam policy apply on the same email
Recently, we made some Spam setting as below shown, but don't know why the result is, emails are prepended with 'spam' and move to junk mailbox at the same time. We want SCL 5 emails is prepended with ...