ivenae's latest activity
-
Iivenae replied to the thread Blocking TLD.I recently answered a few questions here on this topic. It seems that most people are not aware of it, but this is the intended behavior. All emails go through the entire SA filter chain. At the end of this chain, the action object is executed...
-
Iivenae replied to the thread Intel e1000e Regression Causing Proxmox Host Freezes — Resolved by Removing Onboard NIC.I had the same problem on one host yesterday. Thought this was solved over a year ago. modify /etc/network/interfaces with a post-up command helped. iface eno1 inet manual post-up ethtool -K eno1 tso off gso off
-
Iivenae replied to the thread Is possible to quarantine and then deliver the email ? (both actions).I abused the custom script for those actions. Use a custom script: #!/usr/bin/env bash set -euo pipefail # PMG custom check API v1: args: APIVERSION QUEUEFILENAME if [[ $# -ne 2 ]]; then echo "usage: $0 APIVERSION QUEUEFILENAME" >&2 exit 1...
-
Iivenae replied to the thread Reject Unknown Senders (reject_unknown_sender_domain) - Whitelist.Reject unknown senders ("domain not found") or reject unknown client ("cannot find your hostname") is a postfix/postscreen feature and the decision to reject is made long before the SA filter and the Mail Filter -> Who Object -> Welcomelist. You...
-
Iivenae replied to the thread Cannot get Welcome lists to work.The Mail Proxy -> Welcomelist is a postfix senderaccess welcomelist. It is a "Trusted Host" feature that prevents getting blocked in postscreen, i.e. for SPF or DNSBL tests. It has nothing to do with the SA checks you did above. For whitelisting...
-
Iivenae replied to the thread [TUTORIAL] Installation Advisory.- this post intentionally left blank -
-
Iivenae replied to the thread [TUTORIAL] Installation Advisory.Now we have exhausted all third-party plugins. But we can also create our own SA filters. One of the biggest nuisances is "BCC spam". Someone creates a freemail account with a provider that has no outgoing limit and sends spam emails where all...
-
Iivenae posted the thread [TUTORIAL] Installation Advisory in Mail Gateway: Installation and configuration.I've been intensively working with Proxmox MG over the past few days and found the documentation not always helpful. My spam has been reduced by 95%, and I would like to explain here what I changed compared to the out-of-the-box installation to...
-
Iivenae replied to the thread SA score ändern.Ich hatte die Frage hier auch schon und sie wurde mir nie beantwortet. Ich löse das, indem ich den CustomScore auf 4.9 begrenze*, es sei denn er ist sehr hoch, dann soll die Mail ohnehin raus. Ich hätte die Antwort auf deine Frage aber auch...
-
IIch würde mich sehr freuen, wenn du die Anleitung erweiterst... Vielen Dank im Voraus... und für deine bisherige Arbeit... :)
-
Iivenae replied to the thread [TUTORIAL] Block Google Groups, Firebasemail/Firebaseapp, Googleusercontent.com in Postfix (before DATA).A separate version of this filter maintains a local blacklist derived from historical mail data. A domain is automatically blacklisted if it meets the following criteria: At least 8 messages received within a 14-day window At least 80% of those...
-
Iivenae posted the thread [TUTORIAL] Install RSpamD as CustomCheck in Mail Gateway: Installation and configuration.I'm using Rspamd together with a custom script. Rspamd has many advantages and works well alongside the SpamAssassin filters I’ve fine-tuned. You get a additional score which is great to sort out some additional spam. Bonus: Often it does NOT...
-
Iwenn er die DNSBL "zen.spamhaus.org" unter Configuration / Mail Proxy / Options / DNSBL eingetragen hat, ist die Endung völlig korrekt. für 100 Mails/Tag braucht es m.E. keinen personalisierten Link - wir arbeiten auch einfach mit...
-
Iivenae replied to the thread PMG mit Unbound und RBLs.Achtung: <id>.zen.dq.spamhaus.net Normalerweise solltest du dich bei Spamhaus (kostenfrei) registrieren und erhältst dann einen personalisierten Link. Dieser endet nicht auf spamhaus.org, sondern auf spamhaus.net journalctl -u postfix...
-
Iivenae replied to the thread [SOLVED] pop3s Proxy möglich?.Das ist ein Gateway, der holt dir die Post nicht irgendwo ab. Er erwartet, dass fremde Mailserver sie dir liefern und leitet die zu einer Endstation via Port 25 weiter. Das ist kein Mailserver, bei dem du deine Post abrufen kannst. Sicherlich...
-
Iivenae posted the thread [TUTORIAL] Block Google Groups via customcheck [deprecated] in Mail Gateway: Installation and configuration.EDIT: Google Groups can be identified using a regex based on the sender address. Therefore, it is possible to reject Google Groups much earlier. This contribution should therefore be considered obsolete. Use the other thread instead...
-
Iivenae replied to the thread rspamd and PMG recommendations.I'm using Rspamd together with a custom script. Rspamd has many advantages and works well alongside the SpamAssassin filters I’ve fine-tuned. You get a additional score which is great to sort out some additional spam. Bonus: Often it does NOT...
-
Iivenae posted the thread [TUTORIAL] Block Google Groups, Firebasemail/Firebaseapp, Googleusercontent.com in Postfix (before DATA) in Mail Gateway: Installation and configuration.Google operates several services that are commonly abused for sending spam. The following sections describe each service and the filtering strategies used. Firebasemail / Firebaseapp Firebase is a Google-hosted platform that is frequently...
-
-
Iivenae replied to the thread SRS (Sender Rewriting Scheme) (überarbeitet 28.08.24) gmail.com accepted/deferred bei E-Mail-Weiterleitungen.Danke für deinen Beitrag. Ich bin vorerst gescheitert, habs mit deiner Lösung aber sehr schnell hinbekommen. Hinweis: Kopiere das Template von /var/lib/pmg/templates/main.cf.in vor dem Bearbeiten nach /etc/pmg/templates/main.cf.in Dann wird es...
-
Iivenae reacted to TRK68's post in the thread SRS (Sender Rewriting Scheme) (überarbeitet 28.08.24) gmail.com accepted/deferred bei E-Mail-Weiterleitungen with
Like.
Ich antworte mir mal selbst, um meinen gefundenen Workaround zur Installation von SRS (Sender Rewriting Scheme) zu präsentieren: 1. Zugriff auf das Proxmox-Mail-Gateway als root mit SSH: ssh root@xxx.xxx.xxx.xx 2. Paketquellen aktualisieren...
