Hello,
I have been working extremely hard on improving spam detection, improving virus detection on proxmox mail gateway but I still feel like I am nowhere where I want it to be. I am mostly worried about malicious links/attachments, messages that will load scripts or anything malicious.
I just done the test on https://emailsecuritytester.com/ and it just shows how far away from a secure system I am currently.
I really have no idea what to do anymore and I am tried of putting unlimited hours in without any significant improvement.
I think this tests are completely legitimate and just shows how much we have to improve on proxmox mail gateway, Is there anything in the works that will really take proxmox mail gateway to the next level or should we just give up and go with other system?
Here are my results:
01. Spoofed envelope sender - Well done!
02. HTML analysis - High Risk!
03. Executable file - Room for Improvement!
04. Virus attachment - Well done!
05. Outlook Conditional Comment - High Risk!
06. Malware URI - High Risk!
07. Zero Width Spaces link - High Risk!
08. Base HTML Tag link - High Risk!
09. HTML JS Redirect Attachment - High Risk!
10. RFC-Abused HTML Attachment - High Risk!
11. Active PDF - High Risk!
12. PDF with malicious text link - High Risk!
13. PDF with malicious link - High Risk!
14. ZIP Archive with JS - Room for Improvement!
15. MS Word Document with external contents - Well done!
16. MS Excel Document with formula macro function - High Risk!
The spoofing was blocked because of -all spf record and custom SPF_FAIL(29). The one message that was quarantined was detected with virus detected: SecuriteInfo.com.Backdoor.Generic.aybo.27163.UNOFFICIAL (clamav) again something that you don't get on default proxmox and is something I added myself.
I have been working extremely hard on improving spam detection, improving virus detection on proxmox mail gateway but I still feel like I am nowhere where I want it to be. I am mostly worried about malicious links/attachments, messages that will load scripts or anything malicious.
I just done the test on https://emailsecuritytester.com/ and it just shows how far away from a secure system I am currently.
I really have no idea what to do anymore and I am tried of putting unlimited hours in without any significant improvement.
I think this tests are completely legitimate and just shows how much we have to improve on proxmox mail gateway, Is there anything in the works that will really take proxmox mail gateway to the next level or should we just give up and go with other system?
Here are my results:
01. Spoofed envelope sender - Well done!
02. HTML analysis - High Risk!
03. Executable file - Room for Improvement!
04. Virus attachment - Well done!
05. Outlook Conditional Comment - High Risk!
06. Malware URI - High Risk!
07. Zero Width Spaces link - High Risk!
08. Base HTML Tag link - High Risk!
09. HTML JS Redirect Attachment - High Risk!
10. RFC-Abused HTML Attachment - High Risk!
11. Active PDF - High Risk!
12. PDF with malicious text link - High Risk!
13. PDF with malicious link - High Risk!
14. ZIP Archive with JS - Room for Improvement!
15. MS Word Document with external contents - Well done!
16. MS Excel Document with formula macro function - High Risk!
The spoofing was blocked because of -all spf record and custom SPF_FAIL(29). The one message that was quarantined was detected with virus detected: SecuriteInfo.com.Backdoor.Generic.aybo.27163.UNOFFICIAL (clamav) again something that you don't get on default proxmox and is something I added myself.
