how can i block the attached spam bitcoin mails in arabic language

[khaledosama]

dear Sir,

the attached email is a sample of heavy attacks in arabic language whick PMG cannot block or even give higher spam rate , it only give zero spam score

is there any way to block it?

 

[hata_ph]

Based on your attached eml. I suggest few options.

1. Block/Quarantine who object with domain niiyaku.or.jp or email moushikomi@niiyaku.or.jp.
2. Increase PDS_BTC_ID to higher score as it detect bitcoin ID in your mail. Create custom score under Configuration -> Spam Detector -> Custom Scores.
3. Create spamassassin custom rules under /etc/mail/spamassassin/custom.cf with below settings. Restart pmg-smtp-filter services afterward.

# Suspicious mailinglist emails
header          LIST_UNSUB      exists:List-Unsubscribe
#header         LIST_UNSUB      ALL =~ /List-Unsubscribe/i
describe        LIST_UNSUB      Mailinglist/Newsletter emails
score           LIST_UNSUB      1.0

# Subjects with UTF-8 encoding
header          SUBJ_UTF8       Subject:raw =~ /=?utf-8?.?/i
describe        SUBJ_UTF8       Subject with UTF-8 encoding
score           SUBJ_UTF8       1.0

# Mail subject end with spacial character
header          SUBJ_END_SP_CHAR        Subject =~ /(\!|\?|\`|\.|\"|\-)$/i
describe        SUBJ_END_SP_CHAR        Subject end with special character
score           SUBJ_END_SP_CHAR        1.0

 

[khaledosama]

thanks for your reply
i will test it and return with results

best regards,

 

[khaledosama]

it works fine

thanks for your help

best regards,

 

[hata_ph]

it works fine

thanks for your help

best regards,

welcome