Search results

From my current point of view, PMG is one of the best solutions for antispam and antivirus on the market. The gateway is easy to install and administer, however, to get better quality, some adjustments need to be done, which may include options to be set via shell. However, Proxmox tries to...

Zum Beispiel oder gemäß meinem Thread, wenn man kein Let‘s Encrypt und Script nutzen möchte.

I see often hits of KAM rules (it’s not such easy to measure as the KAM rules don’t use a naming scheme, which let you directly evaluate their success), so it looks like they are really good. Some of the rules also make the way to SA itself, however, the guy behind KAM really does a great job...

You’re welcome. My recommendation is to have a multi-layered antivirus approach: Use as much different solutions on different points, e.g. Mailserver, Gateway, Computers, e.g. Sophos SG on the Gateway, Avast on PMG, Avira on the computers. In addition, use filters for typical viruses, disable...

As @hata_ph referred to: Threshold is a score to meet with DNSBL hits, 1 mean just one hit is required, 2 mean two lists need to have the IP listed etc., with *2 you can weight lists, so if a minimum of 2 is requires, two lists without multiplication are required or just one list with *2, you...

Hallo, Sie können ein „echtes“ Zertifikat sich beschaffen oder die Meldung ignorieren, die Mails sollten trotzdem durchgehen. Mit freundlichen Grüßen Christian Heutger

looks good and yes, keep it at 2. if you see too much false-positives, remove all *2, which will reduce all lists to just tagging (or in other words requiring a minimum of 2 lists for rejecting)

Hi, oh, does the error also occur on second run? If so, you need to download the nonKAMrules first, I adjusted the script after running once and first download of nonKAMrules. The service restart fail because you don’t use my milter adjustments, which aren’t required anymore with PMG 6.1. Once...

zen.spamhaus.org*2,bl.spamcop.net*2,psbl.surriel.com*2,spamrbl.imp.ch*2,noptr.spamrats.com*2,escalations.dnsbl.sorbs.net*2,bl.score.senderscore.com*2,bl.spameatingmonkey.net*2,rbl.realtimeblacklist.com*2,dnsbl.dronebl.org*2,ix.dnsbl.manitu.net,b.barracudacentral.org,truncate.gbudb.net,bl.blocklis...

As mentioned in post #225 I just added a script to update KAM.cf and add nonKAMrules.cf as KAM.cf isn't updated really often by PMG and nonKAMrules.cf isn't included at all. Hopefully, this updates would also be adopted to PMG itself. Steps performed are just easy: vi /etc/cron.daily/KAM-update...

Look at my Advancing Proxmox Mail Gateway (especially Spam and Virus Detection) thread. You're using dnsbl.spfbl.net twice, so any hit will directly show as 2 hits and will result in reject. You use sorbs, which has somehow one of the most false-positives possible, so you just need an extra hit...

Thanks for your feedback. Does this also work with unbound?

Sorry, the script provided depends on my setup, which currently still is a miltered pre-queue setup with two SpamAssassin instances running (one via PMG, the other via spamass-milter, and that one I also need to restart). So if you just use PMG without any adjustments, remove or comment the line...

I'm afraid, rspamd's fuzzy results still won't fit "my spam and ham". Also with PMG 6.1 introducing the pre-queue filtering, it's much better not to be in need to have another miltered "double-setup".

Here is the final setup: Advancing Proxmox Mail Gateway (especially Spam and Virus Detection)

How is your success rate? I'm unsure, if most of the spammers are really using infected systems as in the RPZ file. I'm afraid, that solution isn't for anti spam but for users protection in a surfing environment (e.g. at office).

I haven't tested yet PMG 6.1, but I don't see any reason, why it shouldn't.

Many thanks for the feedback. Sounds good. @tom any ETA of the logs been available in the tracking center?

Ah, ok, didn't read that. Then I will wait until that's "fixed" too. Do you have any ETA?

@IEM would be happy for feedback on how/if it's working well/similar to my setup. Especially before queue is interesting for me, if I can then block (reject) in a legal manner on high spam score. And would be great, to see the logs in the tracking center as milter doesn't log there.