Recent content by ivenae

I recently answered a few questions here on this topic. It seems that most people are not aware of it, but this is the intended behavior. All emails go through the entire SA filter chain. At the end of this chain, the action object is executed. If a sender is listed under Mail Filter → Who...

I had the same problem on one host yesterday. Thought this was solved over a year ago. modify /etc/network/interfaces with a post-up command helped. iface eno1 inet manual post-up ethtool -K eno1 tso off gso off

I abused the custom script for those actions. Use a custom script: #!/usr/bin/env bash set -euo pipefail # PMG custom check API v1: args: APIVERSION QUEUEFILENAME if [[ $# -ne 2 ]]; then echo "usage: $0 APIVERSION QUEUEFILENAME" >&2 exit 1 fi cp $2 /my_private_copy_of_all_mails/$(date...

Reject unknown senders ("domain not found") or reject unknown client ("cannot find your hostname") is a postfix/postscreen feature and the decision to reject is made long before the SA filter and the Mail Filter -> Who Object -> Welcomelist. You have to put it in a Welcomelist, which is used in...

The Mail Proxy -> Welcomelist is a postfix senderaccess welcomelist. It is a "Trusted Host" feature that prevents getting blocked in postscreen, i.e. for SPF or DNSBL tests. It has nothing to do with the SA checks you did above. For whitelisting SA Checks you need Mail Filter -> Who Object ->...

- this post intentionally left blank -

Now we have exhausted all third-party plugins. But we can also create our own SA filters. One of the biggest nuisances is "BCC spam". Someone creates a freemail account with a provider that has no outgoing limit and sends spam emails where all recipients are copied in the BCC field. To detect...

I've been intensively working with Proxmox MG over the past few days and found the documentation not always helpful. My spam has been reduced by 95%, and I would like to explain here what I changed compared to the out-of-the-box installation to achieve this. From my perspective, this is...

Ich hatte die Frage hier auch schon und sie wurde mir nie beantwortet. Ich löse das, indem ich den CustomScore auf 4.9 begrenze*, es sei denn er ist sehr hoch, dann soll die Mail ohnehin raus. Ich hätte die Antwort auf deine Frage aber auch gerne. Siehe: *...

A separate version of this filter maintains a local blacklist derived from historical mail data. A domain is automatically blacklisted if it meets the following criteria: At least 8 messages received within a 14-day window At least 80% of those messages were blocked Exclusions & Whitelisting...

I'm using Rspamd together with a custom script. Rspamd has many advantages and works well alongside the SpamAssassin filters I’ve fine-tuned. You get a additional score which is great to sort out some additional spam. Bonus: Often it does NOT correlate with my other filters, so it is an added...

Achtung: <id>.zen.dq.spamhaus.net Normalerweise solltest du dich bei Spamhaus (kostenfrei) registrieren und erhältst dann einen personalisierten Link. Dieser endet nicht auf spamhaus.org, sondern auf spamhaus.net journalctl -u postfix --no-pager | grep spamhaus ... liefert bei mir sehr, sehr...

Das ist ein Gateway, der holt dir die Post nicht irgendwo ab. Er erwartet, dass fremde Mailserver sie dir liefern und leitet die zu einer Endstation via Port 25 weiter. Das ist kein Mailserver, bei dem du deine Post abrufen kannst. Sicherlich kannst du dir auf dem darunter liegenden Debian...

EDIT: Google Groups can be identified using a regex based on the sender address. Therefore, it is possible to reject Google Groups much earlier. This contribution should therefore be considered obsolete. Use the other thread instead https://forum.proxmox.com/threads/block-firebase-early.181674/...

I'm using Rspamd together with a custom script. Rspamd has many advantages and works well alongside the SpamAssassin filters I’ve fine-tuned. You get a additional score which is great to sort out some additional spam. Bonus: Often it does NOT correlate with my other filters, so it is an added...