Questions tagged [spam]
Unsolicited e-mail, comments or posts, often sent out in large volumes; possibly but not necessarily commercial in nature
1,411
questions
2
votes
2
answers
3k
views
Postfix - How to enable SMTP authentication on local delivery
I have an email server running Postfix. Everything is working fine,
However, recently, some internal emails received emails from their own addresses with phishing content.
After finding out, I learned ...
1
vote
0
answers
151
views
How to find malicious PHP script that sends emails from my domain?
My organization mail has been blocked by a malicious PHP script for several days. I learned that spam messages are sent via the mail() function.
How can I find and delete this script on my server? I ...
3
votes
1
answer
2k
views
Spamassassin working but not learning? Bayes-filter accuracy is not improving
I have a mailserver with a working spamassassin installation (postfix, dovecot, amavis, clamav, spamassassin on debian).
Everything is working great. Spamassassin is filting out Spams and I get the ...
1
vote
0
answers
239
views
Spamassassin keeps marking as spam despite low score
I have postfix with Spamassassin and spamass-milter configured.
E-mails with score higher than 4.0 are supposed to be treated as a spam and be rejected.
Here is my local.conf
rewrite_header Subject ***...
2
votes
0
answers
101
views
Exim: Redirect mails without spooling
I am running a personal mail server using exim that only forwards mails (and also runs a few mailman mailing lists).
Unfortunately, my server’s spam protection is worse than that of the mail provider ...
1
vote
2
answers
906
views
Postfix does not retry after 451 error / greylisting
I have a forwarding server using postfix/dovecot that receives emails from a third party mail client (say gmail) and forwards the emails to the final recipient.
I have noticed that when the recipient ...
0
votes
3
answers
554
views
How to delist DNSBL?
Can not send email to some email addresses that it looks like they are using Office 365. The NDR message is coming from DnsConnectorDelivery which is:
[{LRT=11/6/2020 12:11:09 PM};{LED=451 4.4.0 ...
-1
votes
1
answer
62
views
How is it possible for spammers to keep pestering me with FAKE domains when all e-mail sending providers have these insane obstacles to go through?
I keep getting e-mails to my Gmail account from made-up domains such as:
@mtixusu9shbyusyr6.org.uk
@mpqyriexqpvramtkn.org.uk
And so on... (Yes, I checked some of them and they are not actually ...
0
votes
1
answer
737
views
Provider for outgoing mail from own Postfix server
I've been running Postfix on my own dedicated server (hosted by Hetzner) for years, however, it's getting increasingly difficult get outgoing mail to Outlook/Hotmail and sometimes Google delivered. ...
2
votes
1
answer
957
views
DKIM Key Rotation Best Practices
Do you find it necessary to regenerate your DKIM keys every 1-6 months to avoid your mail going into the receiving servers' junk mail folder?
Some guides recommend this, some even say it's "Best ...
0
votes
2
answers
237
views
Suspicious Exchange message queues filling up disk space
So i came across my HD space getting full too quickly and after doing some inspecting with wireshark and powershell. It seems my email server is being used as a relay for spam.
I closed port 25 on my ...
0
votes
1
answer
42
views
Spam filtering based on average ascii score
I'm trying to come up with a new spam filter based on what has been coming through our filter lately. A lot of the messages have subject lines like: "Re: ᴢᴀɴᴛᴀᴄ 【ʜᴀs】 ʙᴇᴇɴ ʟɪɴᴋᴇᴅ 【ᴛo】 ᴄᴀɴᴄᴇʀ&...
0
votes
1
answer
182
views
How to send an email on behalf of user
I have two zimbra mail servers, on server-1 I have one domain with accounts. I want to be allowed to send email from server2, on behalf of [email protected] that I dont have on server2, but this ...
1
vote
2
answers
105
views
Apache "ghost" requests?
I lack the ability to formulate my problem, otherwise I'd probably find the solution.
I notice there are quite a number of pointless requests in my access log
:~/$ cat /var/log/apache2/access.log | ...
0
votes
1
answer
472
views
How to address spam bounce on exceeded quota issue?
I'm investigating a mail server blacklist issue.
Our mail server had a user over quota, which resulted in emails being bounced back to senders with a"user over quota" message. Some of these ...
0
votes
1
answer
355
views
Lots of exim4 notifcations due to failed sender verification
My exim4 server rejects a lot of spam emails due to failed sender verification. However, those result in lots of frozen messages, which in turn spam my postmaster inbox. Example line from exim log:
...
1
vote
1
answer
3k
views
emails to Yahoo are ending up in SPAM folder despite spf=pass, dkim=pass and dmarc=pass
Are we possibility having a reputation problems with Yahoo emails?
Yahoo raw mail header finds my policy I published: dmarc=success(p=REJECT,sp=REJECT)
Emails to clients at Google and Outlook are not ...
0
votes
1
answer
318
views
Postfix seems to ignore spam miltering for LMTP
I use SpamAssassin through a milter to check e-mail, but it seems postfix does not check local delivery (like contact forms). How can I force Postfix to treat all mail as 'foreign'?
0
votes
1
answer
84
views
Cyren (Zxyel) classified my fresh website as a "Spam Site". I have never hosted a mail server. What now?
About a month ago I bought a cheap VPS from a popular provider, and also bought a new domain name for it. It hosts Nextcloud and TT-RSS, and I have never sent an email from it -- yet on http://...
2
votes
2
answers
4k
views
exim - Tainted filename for search - sender verify defer for failed to expand
discovered today this mailserver problem, and because have not written exim myself, can't debug it X-D
also: is this normal?
host zen.spamhaus.org
ping zen.spamhaus.org
ping: zen.spamhaus.org: No ...
0
votes
1
answer
39
views
PTR recored Issue
We have 2 Mail servers ( Internal and External) the External is hosted by ISPA with ip address of 62.xxx.xxx.xxx, we use to have the internet from the same ISPA, and the PTR record is already setup.
...
0
votes
0
answers
43
views
How do I ensure that only my e-mail server is sending e-mail through my network?
This is a follow-up to Our IP was listed by Spamhaus - how can we prevent this from happening again? - unfortunately, it is happening yet again.
I was thinking that people could have malware on their ...
0
votes
0
answers
116
views
google apps domain gives diffrent servers when emailing out then mxtoolbox search shows
When I search a domain that uses google apps I get 10 results mx servers for the domain.
similar to this alt1.aspmx.l.google.com alt2.aspmx.l.google.com
when I recieve emails I get completly ...
1
vote
0
answers
546
views
Yahoo Mail server constantly deferring mail from my server "due to user complaints"
I have a 100% no-spam score on mail tester.
Have no problem with Gmail server, all users getting my emails.
Have everything like SPF and other spam related criteria enabled.
Yet, Yahoo mail server ...
-1
votes
1
answer
203
views
Mail Server IP address is getting blocked by Spamhause
I have use my mail server public IP address for years. But now it is blocked by spamhause. But no special no illegal activities happened on my network. We have very good monitoring solutions and no ...
-1
votes
1
answer
434
views
Ubuntu 16.04 Postfix works, but email goes to SPAM
Hello i follow this guide to install Postfix
https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-postfix-as-a-send-only-smtp-server-on-ubuntu-18-04
and i added SPF, dmarc ...
0
votes
1
answer
913
views
Exchange Online - List-Unsubscribe
I am trying to achieve having List-Unsubscribe header functionality for our marketing emails that are being sent using Distribution list. 3rd party mailing is a no-go.
I have opened a case with M365 ...
0
votes
1
answer
178
views
Debian 10.4 / Exim 4.92 add incremental delay to the unsuccessful login attempt answer
Browsed over all the internet, but cannot find an answer. Is there any acl or something that I could apply to unsuccessful login attempt to add delay to it? As probably anyone running mx, I have a lot ...
1
vote
0
answers
69
views
Why are my error logs full of 404s for "adult" content?
Idly perusing my site's error logs this morning, I was shocked to discover that a large number of rather explicit had been requested. (I don't mind telling you that I very nearly sprayed my cold brew ...
1
vote
1
answer
929
views
Setting up SPF record for A2Hosting shared hosting
I'm trying to setup A2Hosting SPF correctly since the proposed SPF is landing the emails in the SPAM folder in Gmail.
This is the default SPF: v=spf1 +mx +a +ip4:210.125.99.77 ~all
But when ...
0
votes
1
answer
1k
views
FreePBX / Asterisk: use inbound routes to block spammers/hackers
My FreePBX / Asterisk configuration was recently forced into allowing both anonymous inbound calls and SIP guests. So of course we're now getting blasted with spam/hack attempts.
They show up in the ...
13
votes
2
answers
16k
views
How does DKIM work when sending emails from multiple sources/servers?
So if I'm understanding DKIM correctly, it basically is a public/private key type of service. However, how does this work if you send emails from multiple servers/sources? For instance, I have a ...
1
vote
0
answers
356
views
The DMARC test failed but we didn't find any obvious reason why
One of our users recently found out his emails are going to spam for some reason. This made me dive into everything and the last thing I can't seem to figure out is the Dmarc.
We're using gmail for ...
0
votes
1
answer
190
views
Why are my Postfix mails recognized as Spam? [duplicate]
I have a Postfix mail that I have configured pretty good. mail-tester.com gives me a 10/10.
I have tested on both Google and Yahoo, and checked their headers. Nothing seems to be wrong in the headers.
...
0
votes
3
answers
835
views
Is mail rejected by Exim's !verify = header_syntax ACL item, with RFC 2047-encoded From/To headers, legitimate?
A recent Exim upgrade added this to the default acl_smtp_data ACL:
.ifndef NO_CHECK_DATA_VERIFY_HEADER_SYNTAX
deny
!acl = acl_local_deny_exceptions
!verify = header_syntax
message = header ...
1
vote
2
answers
455
views
Our IP was listed by Spamhaus - how can we prevent this from happening again?
I'm the technical assistant at a small-town public library where we run our own e-mail. If it matters, it's Postfix on an Ubuntu 18.04 box. Gateway / firewall is a 16.04 box with port forwarding set ...
0
votes
3
answers
185
views
Sharing IP black lists
Are there any tools similar to fail2ban that would allow sharing of IP black lists? What I'm looking for is something similar to a DNS based blackhole list or real-time blackhole list as is used to ...
2
votes
0
answers
555
views
How to avoid gmail orange mark and spam filter when using cloudflare proxies?
I send emails from my site via php smtp method connected to 'smtp.gmail.com' on 465, and account added to GSuite. All my emails falls in spam folder in Gmail. The kind of emails is just password ...
0
votes
1
answer
610
views
Find exim account sending lots of emails. (Spamming)
I have an Exim server with several domains configured. In each domain I have several email accounts. From time to time a computer configured with one of this emails gets infected and starts sending ...
1
vote
1
answer
292
views
Spam Email Delivery and MX Records
I hope this is an appropriate post.
We've had some sites on VPS's hit with a recent hack. The hacks were cleared up, the sites were set as "devious/dangerous" by Google were re-scanned by Google in ...
3
votes
2
answers
2k
views
SPAM Domain Spoofing through SES
A spammer seems to be running spam through SES and spoofing our domain.
We are using SPF and DKIM so I’m not sure what is going on.
This is our SPF record:
v=spf1 a mx include:amazonses.com include:...
0
votes
0
answers
91
views
Website Change causes Spam classification of emails
TL;DR: Emails containing a link to our company website are marked as Spam by different providers. How can I find the reason for this, and how can I stop it?
Several weeks ago, the company that wrote ...
5
votes
2
answers
15k
views
Spam passing postfix config "hostname does not resolve to address: No address associated with hostname"
On a postfix MTA MX setup, I have a spam mail pass two checks which it definitely shouldn't.
The postfix/smtpd process logs these warnings, which should be a hard fail in this setup:
hostname * does ...
0
votes
2
answers
276
views
Emails from my domain (hmailserver) are always in YahooSpam
Hi during sending out my mails from my domain luxpost.com they are placed directly into spam folder in yahoo. I tried to analyse the raw header and got only DKIM warnings. So I placed a DKIM entry in ...
1
vote
1
answer
229
views
O365 Emails Getting Marked as Spam when Moved to new Folder
One of our main inbound mail accounts seems to be having a strange issue where the emails are getting marked as spam, not when they arrived, but when they are moved to a folder.
They are also all ...
1
vote
1
answer
764
views
Spamassasin rule to flag certain MX IPs
I've noticed a flood of spam that is related to the same range of IPs.
All the spam email has different HTML text (which is english but meaningless) and a few embedded pictures (which I block) but ...
0
votes
0
answers
222
views
Are email services looking at the "From address" along with the envelope sender when doing SPF lookups?
First, I understand the caveats and flaws of SPF as an aging authentication technology, and understand that it should be used in conjunction with DKIM and DMARC and is not a panacea for deliverability....
0
votes
1
answer
1k
views
postfix server on VM - mail relay
I've setup a mail server according to this setup: https://thomas-leister.de/en/mailserver-debian-stretch/
The documentation itself looks quite good to me - is well explained and seems to work... ...
1
vote
1
answer
1k
views
how to reject emails with specific subject on Mail server postfix spamassassin?
I have postfix and spamassassin. recently I found an email with subject "XXX" to all company email addresses and aliases.
So I was wondering if I can reject sending emails with specific subject "XXX" ...
0
votes
0
answers
154
views
Postfix forward mails to external domains as (inline) bounce
My problem: I own a postfix server with several Aliases on it. For example:
[email protected] => [email protected]
If I now send a email from [email protected] to [email protected] it get's forwarded to [email protected]
...