how can i block the attached spam bitcoin mails in arabic language

K

khaledosama

New Member
Oct 1, 2021
3
1
3
48
dear Sir,

the attached email is a sample of heavy attacks in arabic language whick PMG cannot block or even give higher spam rate , it only give zero spam score

is there any way to block it?
 

Attachments

Based on your attached eml. I suggest few options.

1. Block/Quarantine who object with domain niiyaku.or.jp or email moushikomi@niiyaku.or.jp.
2. Increase PDS_BTC_ID to higher score as it detect bitcoin ID in your mail. Create custom score under Configuration -> Spam Detector -> Custom Scores.
3. Create spamassassin custom rules under /etc/mail/spamassassin/custom.cf with below settings. Restart pmg-smtp-filter services afterward.

Code: 
# Suspicious mailinglist emails
header          LIST_UNSUB      exists:List-Unsubscribe
#header         LIST_UNSUB      ALL =~ /List-Unsubscribe/i
describe        LIST_UNSUB      Mailinglist/Newsletter emails
score           LIST_UNSUB      1.0

# Subjects with UTF-8 encoding
header          SUBJ_UTF8       Subject:raw =~ /=?utf-8?.?/i
describe        SUBJ_UTF8       Subject with UTF-8 encoding
score           SUBJ_UTF8       1.0

# Mail subject end with spacial character
header          SUBJ_END_SP_CHAR        Subject =~ /(\!|\?|\`|\.|\"|\-)$/i
describe        SUBJ_END_SP_CHAR        Subject end with special character
score           SUBJ_END_SP_CHAR        1.0
 
You must log in or register to reply here.
Top Bottom