I am still working to find a way to tell the regex to say true when on FROM the @domain, is repeated more than once and differ.
The rule must fit only on From headers with two mails and both may differ.
It should not match:
From: "user1@domain1" <user1@domain1>
From: "user" <user@domain>...
If you want to block any FAKE MAIL the REGEX should be:
Then this will block any From with two emails in following pattern: "xxx@xxx" <xxx@xxx>
This will be blocked:
Of course was the account was hacked.
This kind of attack is called email spoofing, the hacker use a hacked email and us a known email from your known list , then they send a email you recognize as your friends, with an attachment but coming from another email.
Generally the users does not...
It would be also great if all quarantine or Bulk emails could be shown in the panel and be sorted by From, To, Subject, Score, Size, Time
In that way can be deliver a bulk of email in quarantine base on a subject selecting alls at once and not user by user.
There is any cli command...
Greetings i am testing the rules and they do not apply:
header __CHEESE_RULE1 Subject =~ /\bcheese1/i
describe __CHEESE_RULE1 From header word cheese1
score __CHEESE_RULE1 40.0
I am using pve 5.4-13 and not working
iface eno2 inet manual
iface vmbr2 inet manual
iface vmbr998 inet manual