the rule 'match fiels' does not work correctly

F

flynn

New Member
Sep 8, 2022
1
0
1
Hi guys!
Not long ago, I set up a rule for checking the body of the letter.This is necessary so that attackers cannot substitute one of our domains in the body of the letter.
1.PNG
2.PNG

rule test:
MAIL FROM:<test@blabla.com>
250 2.1.0 Ok
RCPT TO:<garry@example.com>
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
From:message <test@example.com>
Subject:test
sdsa
.
554 5.7.1 Rejected for policy reasons (10101B631F246F15AF9)


3.PNG
Test passes successfully!


After testing, the "check from" rule was moved to production.
After a while, it became clear that the rule was mistakenly blocking emails.
I've been breaking my head trying to match regular expressions, but it didn't work.
Example:
(^)*@example\.(com|com\>)($)
.*@example.com$
@example\.com\>($)
etc.....

I ask for help.
 

Attachments

  • 3.PNG
    3.PNG
    36.2 KB · Views: 3
The regex seems quite odd
`(^)*@example\.(com|com\>)($)`
the grouping of ^ and $ (begin/end of line) makes no sense - you could even try to skip the anchoring at all

else please share some examples (mail source as well as logs - as text) where the blocking happened where it should not happen...
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom