Hello!
Today a few clients received an email from their own accounts saying they've been hacked and the hacker has access to their mail and cPanel account,
We verified and the mail was sent from a different server.
Because of that we're making some changes to the SPF, exim and mailScanner configuration, there is some some mailScanner option to block remote mail from an account to itself or just...
Hello Sarah,
would you be kind to tell how to fix this?
Warning! directive_matcher could not parse error:
cwd=/usr/local/cpanel/whostmgr/docroot 4 args: /usr/sbin/exim -bV -C /etc/exim.conf.test.work.8b674329
Exim configuration error:
new_router virtual_user not found for virtual_user_mailscanner router
Steps to reproduce the message:
- Open EXIM MAIL CONFIGURATION
- Open ADVANCED OPTIONS...
Is there a setting within Mailscanner that allows for the rejection of mail at SMTP time when the score exceeds a predefined threshold?
This feature exists within the Exim Configuration Manager although I have not enabled it as the advice is not to tinker with Spamassassin settings when Mailscanner is installed. We have this feature running on an old server and it works really well.
that was about winmail.dat files
I see now the creation of files like 20000.dat of 310000.dat in the
/var/spool/MailScanner/quarantine/20220114/xyz
directory as a result of scanning a mail that has *not* this attachments in its source.
Then MailScanner says Bad Filename Detected and
Report: MailScanner: No programs allowed (310000.dat)
Has someone found a reason /...
I am trying to create a filter to rewrite the from and to of messages we send to our internal fax service.
My requirements are:
Determine if the message is from one of three allowed domains
If yes, then determine if the message is being sent to our fax software.
if yes, then
change the from address to the address our fax software will respond to
change the to address to the format our fax...
It seems like Mailscanner should automatically block email that has no From: address. We are getting a ton of these now and they are all 100% spam. We can block the IP but we obviously can't block the From: address if there is nothing to block. Are we missing a setting somewhere? If there is no From: address how can it be legitimate mail and why doesn't Mailscanner automatically block it?...
We have a disgruntled customer that specifically created an email address to subscribe it to spam lists/newsletters and then they set up that email address to forward all emails to one of our support emails, creating a large amount of spam that can't really be blocked by traditional means. The original senders are, more or less, legitimate and mostly legitimate newsletters, so I wouldn't...
Having the instant IP block is an awesome feature and we use it frequently for repeat offenders. But these days so many spammers are sending from multiple IPs from a single CIDR 24 block. It would be so cool to have two options to click to block. One like the current single IP block, and a second one right next to it that blocks the entire range, ie NN.NN.NN.0/24. We do this manually at times but...
I need help updating the RBL List that Mailscanner checks.
I've updated spam.lists.conf but it does not appear to work as I am still getting an open resolver error from Spamhaus.
(I am not doing any RBL checks in Exim - All of them are off and the custom list is empty)
What am I missing?
For context:
If anyone else is running Mailscanner on an AWS EC2 Instance you may have noticed...
I'm really hoping that someone here can help, since my servers' O/S no longer qualifies for support for my purchased CP+MS installs (CloudLinux 6.10) and I'm in dire need of some guidance on this issue.
Recently some clients brought to my attention that the are not receiving their Amazon Order confirmation and Shipped confirmation emails. They're receiving all other emails from Amazon, just not...
Hello,
I have whitelisted an email but it is still blocked by Mailscanner.
The document has several attachments but I don't usually have problems with pdfs.
Can anyone tell me the reason why it is blocked and unblock it?
Mailscanner FE says it's working, but in taillog I see this:
May 24 19:59:22 host MailScanner: Failed to read configuration file /usr/mailscanner/etc/MailScanner.conf
Mail doesn't seem to be coming through since we updated an hour or so ago.
We're facing an issue ever since cPanel/WHM update from v100 to v102 where SpamAssassin keeps marking domains with a DMARC record with KAM_REJECT_DMARC on every single outgoing mail. Currently we've mitigated the worst with a temporary score setting. This has its own obvious drawbacks.
Has anyone faced this issue? What was your solution? Ideally we'd like to keep outgoing spam filter, but...
I've created a couple of custom rules, and placed them in the user_prefs file, and also tried the /usr/mailscanner/etc/spamassassin.user.prefs.conf file, and none of my rules are getting triggered.
Is there a way that turns this functionality on/off?
An example rule might be:
header TT_TEST_BY_SUBJECT Subject =~ /SomeText/i
score TT_TEST_BY_SUBJECT -0.1
We're trying to allow .dbf file attachments but we've had no luck so far.
We tried allowing this file extension in:
- archives.filename.rules.conf;
- archives.filetype.rules.conf;
- filename.rules.conf;
- filetype.rules.conf;
with no success.
When trying to send a .dbf attachement we keep triggering this rule:
deny executable No executables No programs allowed
in file...
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum