Good day!
My first post is disappeared. Trying to post new one.
I have PMG as Exchange 2019 frontend.
My domain name, for example, is pxo-co.kz
For testing fishing case I made a cyrillyc domain with mailservice рхо-со.kz
If you see at the email addresses of both domains, you can see they are identical at first look.
Example:
somebody@pxo-co.kz - english letters
somebody@рхо-со.kz - cyrillyc letters
PMG and Exchange will accept such emails, and all enduser can do to determine which of them is wrong - copypaste it to the notepad and get something like this:
from=<xxx@xn----8sbp2bhi9a.kz
In outlook it looks like xxx@pxo-co.kz
In OWA it looks like xxx@xn----8sbp2bhi9a.kz
In PMG Syslog it looks like xxx@xn----8sbp2bhi9a.kz
Here is a part of PMG Syslog, with sensitive data removed:
https://pastebin.com/ZwdUzjHa
Question:
How can i filter such emails with PMG?
My first post is disappeared. Trying to post new one.
I have PMG as Exchange 2019 frontend.
My domain name, for example, is pxo-co.kz
For testing fishing case I made a cyrillyc domain with mailservice рхо-со.kz
If you see at the email addresses of both domains, you can see they are identical at first look.
Example:
somebody@pxo-co.kz - english letters
somebody@рхо-со.kz - cyrillyc letters
PMG and Exchange will accept such emails, and all enduser can do to determine which of them is wrong - copypaste it to the notepad and get something like this:
from=<xxx@xn----8sbp2bhi9a.kz
In outlook it looks like xxx@pxo-co.kz
In OWA it looks like xxx@xn----8sbp2bhi9a.kz
In PMG Syslog it looks like xxx@xn----8sbp2bhi9a.kz
Here is a part of PMG Syslog, with sensitive data removed:
https://pastebin.com/ZwdUzjHa
Question:
How can i filter such emails with PMG?
