Recent content by ivenae

  1. I

    Help configuring SPAM scoring with RBL

    This is normal in the default setup. The default settings are generally very conservative, so you may need to adjust some of your scores under "Spam Detector" -> "Custom Scores" (don’t forget to click Apply). You can search for filters in the Tracking Center and look for ones that identify only...
  2. I

    [TUTORIAL] Block Google Groups, Firebasemail/Firebaseapp, Googleusercontent.com in Postfix (before DATA)

    This script will do an awesome filterjob: - filters very early (before DATA) with very little CPU power - high filter-rate - more or less no false positive Installation identically to first post, additional: apt install python3-spf python3-dnspython mkdir /p /t/ chmod -R 777 /t/ visudo -f...
  3. I

    Handling fake own From:

    I have some similar solutions to this. This rule is designed to detect potential domain spoofing by comparing the visible From header with the SMTP envelope sender (MAIL FROM). It triggers when an email claims to come from one of the organization’s domains (including subdomains) in the From...
  4. I

    How added GeoIP

    I made a description here: https://forum.proxmox.com/threads/installation-advisory.182175/
  5. I

    [SOLVED] Domainliste mit Wildcard für subdomains

    Dann verwende einfach PCRE Regex Kommentare, um dir deine Notizen zu hinterlegen ;-/ (?#...) [a-z0-9]{1,3}\+bncB[A-Z0-9]{25,}@.*(?# Google Groups)
  6. I

    [SOLVED] Domainliste mit Wildcard für subdomains

    Man muss nicht nach dem tag suchen, man kann auch nach Absenderadresse filtern. Der Regex, der auf alle Google Groups nachrichten matcht lautet: [a-z0-9]{1,3}\+bncB[A-Z0-9]{25,}@.*
  7. I

    Cannot get Welcome lists to work

    Maybe you deactivated the welcomlist Action Object in Mail Filter?
  8. I

    [TUTORIAL] Installation Advisory

    Spamhaus SA Filter TVD_MIME Filters Beware: SA Filters could add, an email could pop up in multiple SA lists. It is also important to pay attention to the order of the filters. DNSBL and policyguard filter the largest volume. The policyguard autoblocklist [abl] filters a lot and has not...
  9. I

    [TUTORIAL] Installation Advisory

    "blocked using" is the sum of all DNSBL policyguard google groups filter (filtertered google groups only) policyguard google user content: this filter filters HELO strings. i added turbo-smtp, googleusercontent.com and xqueue.com policyguard autoblocklist. this filters sender domains...
  10. I

    [TUTORIAL] Integrate rspamd as custom script

    i reply to your post on my advisory page
  11. I

    [TUTORIAL] Installation Advisory

    I block (reject) on Score = 7. No mark, no quarantine.
  12. I

    [TUTORIAL] Advancing Proxmox Mail Gateway (especially Spam and Virus Detection)

    I have also started a new topic for proxmox MG 9.0 https://forum.proxmox.com/threads/installation-advisory.182175/ I also wrote a policy filter for a large amount of google spam here...
  13. I

    Blocking TLD

    I recently answered a few questions here on this topic. It seems that most people are not aware of it, but this is the intended behavior. All emails go through the entire SA filter chain. At the end of this chain, the action object is executed. If a sender is listed under Mail Filter → Who...
  14. I

    Intel e1000e Regression Causing Proxmox Host Freezes — Resolved by Removing Onboard NIC

    I had the same problem on one host yesterday. Thought this was solved over a year ago. modify /etc/network/interfaces with a post-up command helped. iface eno1 inet manual post-up ethtool -K eno1 tso off gso off
  15. I

    Is possible to quarantine and then deliver the email ? (both actions)

    I abused the custom script for those actions. Use a custom script: #!/usr/bin/env bash set -euo pipefail # PMG custom check API v1: args: APIVERSION QUEUEFILENAME if [[ $# -ne 2 ]]; then echo "usage: $0 APIVERSION QUEUEFILENAME" >&2 exit 1 fi cp $2 /my_private_copy_of_all_mails/$(date...