I need to implement a form of filtering. Current topology is like so:
Internet -> Smoothwall -> MS Exchange server (w/ OWA) -> Clients
So I need to enable transparent spam filtering on the smoothwall system, which is a full fledged Linux system. There are no 'free' modules available for smoothwall that enable spam filtering. And due to the monetary constraints of the project I'm working on, something free is required.
I don't have any experience with this - I've done a couple of searches and came up with "SpamAssasin", but I can't find any relevant guides that allow transparent scanning - they all assume the mail is stored on THAT server.
So I'm here to ask the more experienced people what sort of packages will enable this functionality? Would like something that has a WebUI, but that's not absolutely necessary.
I have a mail server (dovecot+postfix) on Centos with amavis/clamav installed and working. It correctly identifies spam as such and puts it in the headers. I want it to move those suspected spam messages into a spam folder. I do have this working on an older debian server that I didn't setup. If someone could point me in the direction if where that config might be. I can't find it in any of the mail config files.Could there be a seperate package doing this?
I just setup SpamAssassin and what not following this tutorial
[URL]
I am using CentOS 5.3. I was half way through that and got an email that had ***SPAM*** in the subject. Haven't received any more. First of all I want to know if spam will still get delivered, and just have a modified subject. Second, I want to know how to set it up so Spam goes to a user's spam mailbox (Virtual Users). And third of all, is it possible to disable spam filtering on a user basis, preferably using MySQL tables? Is it possible for users to mark a message as spam, and all further messages sent from that address will be sent to spam folder but only for that user?
EDIT: Yes spam is getting delivered with a modified header, on the server site, how can i deliver to spam folder? how to create IMAP virtual mailboxes on request without having to send an email to them first? Using virtual users with Courier Imap
I currently have the following email server set up:
Postfix with mysql backend Dovecot clamav spamassassin amavisd
And it all works great. However I would like it for amavisd to forward all the marked spam into a folder on each user account, but I cannot figure this out.
I am using postfix as spam Mailscanner to protect my mail server running sendmail. The problem is that when I forward an email from MailScanner mail me back with the following error:
<postmaster@localhost.@mydomain.com.>... Real domain name required for sender address (in reply to MAIL FROM command)) Jul 27 13:15:59 smtp postfix/local[28465]: C68AC1000001: to=<root@smtp.mydomain.com>,
After installing postfix on my server , all emails sent by a PHP class that i built , are received to spam folder , no matter what i do .am not an expert , except in PHP , the class i built works fine everywhere else except on this server , so i think the problem might be from the server it self ?some told me wrong configuration/software on my server , others told me wrong DNS stuff . actually i don't understand the DNS stuff , and am not an expert in linux softwares and services but i cann install/configure them , so could anyone please check the DNS for problems ?
Because our visitors/customers are short term, and may be configured incorrectly with their own mail servers we automagically redirect all port 25 traffic going to internal IP's to our own mail servers while on our network.(postfix on centos 5.6)While I have taken some measures to prevent it from spamming, I would greatly appreciate some assistance.I will be putting in clamav, but I haven't configured it yet with the mail.I am using postfix, but can also put on procmail or even spam assassin
I have made linux raid array, named it md1 and it can be found under /dev/md1. I have created single partition (whole disk) of type LVM (8e) and it can be found under /dev/md1/md1p1.
When I run: pvcreate /dev/md1/md1p1 I get this message: Device /dev/md1/md1p1 not found (or ignored by filtering).
But if I run pvcreate /dev/md1 Everything went OK. I can create volume group and logical groups after that.
I haven't found anything specifically on net, except that partition for LVM to work should be of type 8e. Does this doesn't have to be true when we use whole disk as a VG? Should I expect any problems since this is going to be iSCSI target disk?
The mail server is not on my local LAN, and all the primary users are roaming. They connect via TLS auth, which is required to make a sendmail connection to my server. I could whitelist all addresses in my domain, but then anyone spoofing my email wouldn't be seen as spam. How do I simply tell amavis-new and/or sendmail not to spam scan TLS authenticated users?
We have a vpn that is accessible to anyone. We already block port 25, 587 and 465. But I am still receiving spam reports. I believe that the users of my vpn is infected by a virus or something that sends spam. Are there any other ways that spammer send spam mails without using the smtp ports?
My guess is that they are trying to send it by accessing a webmail. Have you heard of anything like that? how to block spam?
I'm in charge of a church computer lab which is open to children ages 6 to 16 for about 3 hours a week. We try to have adult supervision but don't have 100% coverage.
The lab has a maximum of 8 computers, a mixture of MACs, Windows XP, and Linux machines, depending on their state of repair.
The church's current internet connection is Verizon residential speed DSL to a 4 port wired plus wireless router in a locked office which also houses our Windows XP office computer and is adjacent to our locked pastor's office.
Internet access for the lab is by a single CAT5 cable passing through a small hole in a wall to a network switch on the other side. All of the lab computers are connected to the switch by CAT5 cable.
I would like to add a server in the locked office to log internet usage and block access to certain websites as needed. I think logging internet activity will be a good antidote in case one of the older ones wants to try to get sneaky and cover their tracks.
I envision building a computer from donated parts, including 2 NICs.
I have never done things from the server end, but think the server edition of Ubuntu would be a good starting point.
My goal is to be able to manage internet access with an easy to use GUI system so I could teach the basics to a couple of youth leaders to use it when I'm not there.
I just saw that my network is slowed so I watches the /var/log/squid/access.log where I get this line continuously....
[Code]....
I thought that someone running any script so I disconnect all my LAN connection (simply removed the local lan cable) but I saw the connections is going on....so I watch the processes on proxy server but nothing suspicious....So I change my static IP and the spamming stops (I say it is spam b'coz the IP 203.188.197.10 is of yahoomail.com ) but I when I am putting my OLD ip back the connection starts again......I want to put back my old static IP b'coz I have configured it for many services. Is there any spyware on my machine or someone configured my IP?
I'm setting up email gateway using Postfix, Amavisd-new, ClamAV and SpamAssassin on Opensuse 11.1. Everything seems okie, but I can't have messages with added spam headers, such as:
X-Spam-Flag: NO X-Spam-Score: 0.233 X-Spam-Level: X-Spam-Status: No, score=0.233 tagged_above=-10 required=6.6 tests=[ALL_TRUSTED=-1.8, AWL=0.536, BAYES_50=0.001,]
When I try to debug amavis, I can see that SPAM-TAG, <abc@yahoo.com> -> <celeron@domain.com>, No, score=5.406 tagged_above=-999 required=6.2 tests=[LOCAL_DRUG=4, NO_DNS_FOR_FROM=1.407, NO_RELAYS=-0.001] but they don't add to email messages. I've configured amavisd-new with $sa_tag_level_deflt = -999 to add spam headers at all but not successful.
My postfix server has been working great for the last 1-2 years. Lately the number of spams encreased (from 1-2 every day to aprox 8-10 every day per domain for some domains ).I post here the output of postconf -n. Maybe someone gives me some advices about what cat I change or how can I optimize. I must recognise that I don't fully understand details of how postfix and all the restrictions works together, but I will document every advice.
My client has finally had enough of being attacked via SPAM/Viruses and having his single email account for his company being destroyed. Since it is a single account and he does not want to add additional accounts or create a new one(mail is hosted by ISP), I wanted to ask the forum on their opinion on using Fetchmail to download the POP3 mail and having it piped through SMAM Assassion or DSpam and or CLAM_AV or F-PROT. In addition to that I am going to use a corporate strength anti-virus such as F-prot(Been using for years) and really put this email through a microscope. I also was thinking of just blocking out all domains other than his clients list of domains so in other words block all and allow just the domains that we know are valid and are only from his clients. It is super restrictive but what I believe will end his issue.
I have postfix installed for a while now. It seems as though my server is sending out spam to other people which is really bad...I got emails like this one:
Code: Delivered-To: email@provider.com Received: by 10.223.107.17 with SMTP id z17cs2705fao;
I have set up a couple of postfix servers for my domains, but the only thing I am missing now is this: How to block the public sending mail from my email to my email? I have managed it with SPF, but surely there must be a better way, that returns "relay not allowed" to the client. The SPF method costs too much, since it must make a dns request for each mail. So far, I have not gotten many of these mails, unless when testing my mailserver, but as I see it, anyone should not be allowed to send mail from abuse@mydomain.com to abuse@mydomain.com.
Somebody must have thought about this a long time ago, and there is simply that little line in main.conf that I'm missing.. My setup is this (virtual): I have a primary mx, with postfix, courier IMAP/POP3 server, a user database, and sasl via saslauthd. I also have a secondary mail server (backup mx) with no sasl auth, but with a copy of the mail users in the virtual tables, but added as relay_* users instead.
Spamassassin and SPF testing is replicated too, so most of the stuff should work, but I simply cannot find a setting in Postfix that denies someone to mail FROM my address TO my address. When mailing from my address and out in the open, they are required to authenticate, but not when using one of my my domain addresses, and also targeting my domain addresses.
As said, It is possible with a strict SPF setting, but that is at a cost for every lookup. It would be quicker for postfix to lookup the sender and the recipient in the relay/virtual tables, and deny if both addresses were in the recipient tables, and sender is not authenticated.
Am using atmail server but recently i have been facing the problems of spams which caused my ip address to be blacklisted to some dnsbl check. am using below dnsbl to filter spams to my atmail
I followed this how to document [URL] to install postfix, Amavisd, SpamAssassin and ClamAV. My postfix installation is working fine and I can send and receive emails fine. However, it looks like SpamAssassin is not catching any emails. Emails do get passed over to Amavisd as I can see in the logs but ALL Messages comes out CLEAN without being tagged as spam.
As per the document, I did test by sending a test virus email
it does get delievered without being detected as SPAM or tagged as SPAM.
As I said, I have followed the documentation dot by dot and hence do not have spamassassin starting up as a service but i guess amavisd starts it within itself as a module.
Also, my postfix version is the one that supports mysql virtual tables which I got from rpmforge.
I was wondering if there was some kind of anti-spam proxy available for debian, that could serve as a layer between my ISP's mailserver and my email client. Something light, as it needs to be installed to a guruplug server with not much storage available. It would be great if I don't need to configure a fully fledged mail server but if it can function on it's own, only filtering spam messages. I already found assp and qpsmtp, but I find these very difficult to setup and assp is like huge.
I am new comer in this forum and the beginner on freeBsdI have a problem on how to implement the spam filter program on mail server, the problem is i have no idea on how to implement and test the spam filter program on the mail server and where should i put the program? is it in pop3?
I all ready have a Debian spam filter setup using Postgrey, Postfix, Amavis-new, spamassassin, and ClamAV this box is a relay spam filter server to our SBS Exchange Box. Currently all Virus laden email is disposed of, and all spam that is not thrown out gets sent to a spam filter account on the exchange server that I check periodically. This is inefficient and I'd rather not do this, additionally I'd like users to have control over their own white lists and so forth.
I am willing to start from scratch on this as the spam filter is running in a VM environment I can plug a new one in and be running in minutes. The issue I am having is that I cannot find any information on how to do this. Plenty, including HOWTOs, on how to do this with local users on the spam box and also have it relay to another server, but not how to make quarantine folders for relay recipients that are access
I set up an exim4 server successfully and was able to send/receive mail! I fired off a couple emails to my friend and never got a response. Oh well, I thought, must be because my domain name might be considered spam.Flash forward to today and I get an email from the people who host my server, telling me that I have left my exim4 relay open. Looking through some of my users' email, I see a series of messages with the subject 'Message frozen':
Code: Message 1QCCQJ-0004FP-OY has been frozen (delivery error message). The sender is <>.
I'm new here and I'm sure this question has been thrown around a lot but I just couldn't find a solution. I have a networking website I've setup and we need to send notification mails to our members depending on activity related to their profiles(messages, comments etc).We are hosting the site on Centos5.6 with VirtualMin and are using Postfix as our MTA. We also use google apps for email on the site. Heres the problem, the mails go through for some gmail users but more often than not, they end up in gmail,hotmail and yahoo spam.We've setup the appropriate SPF codes on the server, DKIM and rDNS works fine.v=spf1 ip4:xx.xx.xx.xx a mx include:_spf.google.com ~all Below is a sample email that goes directly into gmail spam. I've replaced the actual values with dummy text (Ip, Domain etc)
Delivered-To: my.email@gmail.com Received: by 10.143.165.5 with SMTP id s5cs223598wfo; Fri, 15 Apr 2011 08:38:22 -0700 (PDT)
I need help with header_check filter on postfix. In the last week mail users received a spam e-mail without subject line and I don't know what is the way to reject this. This is the example of message header:
From: "example@example.com" Date: September 16, 2010 9:07:43 AM GMT-04:00 To: <example@example.com>
I want to reject e-mails that don't have Subject line
All the emails I send from my linux server end up in the recipient's spam folder....Although I have tried many howtos etc and checked all blacklists... It doesn't work...
I want to make a transparent squid proxy server in centos. The squid proxy version is 2.6 stable. I made a normal squid server but want to make it transparent so that users do not need to enter the proxy settings in web browser. Even i searched about this on google but not getting it properly.I have two lan cards on centos system. ETH1 used for LAN and ETH2 used for WAN. And in this squid.conf i written "http_port 172.16.31.1:3128 transparent" and i also added a rule in iptables which is "iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128" but still i have to enter proxy settings at client's web browser to use internet
I would like to install and configure Transparent squid proxy on a gateway server ,but i dont have a local OR intranet DNS server.I am facing issues do that ,regard .My IP series is 192.168.1.1/24
