Outgoing SMTP Filtering

Dec 24, 2007

More out of curiosity than anything, I've been wondering if there are options for filtering outgoing SMTP. Not necessarily every single message, but a firewall-level tool to watch for a sudden burst in SMTP from one host, run some of the messages through SpamAssassin or the like, and trigger an alert if they rank highly for spam.

It seems like it's technologically possible, but I've never heard of anyone doing it, nor seen an actual implementation of it. Has anyone heard of this type of thing?

View 1 Replies


ADVERTISEMENT

Strong Smtp For Outgoing Mails

Apr 6, 2009

I have never used any VPS or dedicated..

always used shared hosting..

now the problem is, i m runnning a fun forum.

and to promote it, i have to send lots of fun emails daily to lots of msn google and yahoo groups..

so i need a strong smtp for outgoing mails.

as i have never tried any vps or dedicatd server , so i dont know what is bettter,

View 9 Replies View Related

How To Setup Smtp Outgoing Mail

Nov 26, 2007

i just have a vps with plesk installed, since this is my first time have a vps, i have run into some problem,

so here is the problem.

i want to use pop3 account directly from my outlook, but i don't know how to fill the smtp outgoing address, which mean, i can logged in to account by i cannot send the mail via outlook, but if i'm using the webmail provided by plesk it's just run fine.

here is my dns config, please take a look:
note: domain name changed to domain(dot)com because newbie cannot post url link in this forum...

Host | Record Type | Value
--------------------------------------------
123(dot)123(dot)123(dot)123 / 24 | PTR | domain(dot)com

ftp(dot)domain(dot)com | CNAME | domain(dot)com

mail(dot)domain(dot)com | A | 123(dot)123(dot)123(dot)123

ns(dot)domain(dot)com | A | 123(dot)123(dot)123(dot)123

domain(dot)com | NS | ns(dot)domain(dot)com.

domain(dot)com | A| 123(dot)123(dot)123(dot)123

domain(dot)com | MX (10) | mail(dot)domain(dot)com.

webmail(dot)domain(dot)com | A| 123(dot)123(dot)123(dot)123

www(dot)domain(dot)com | CNAME |domain(dot)com.
-----------------------------------------------------

i've tried few such as webmail.domain.com but still cannot work in smtp outgoing email in outlook.

View 0 Replies View Related

Plesk 12.x / Linux :: SMTP Outgoing Email Error Webmail And Outlook

Jul 16, 2014

I have just install on a new server plesk 12.0.18 Update #7 on centos 6.5 final.Added new hosting for the domain on a dedicated IP. All works fine (website, incoming mails etc) apart from outgoing mails.Both webmail (roundcube) and other mail software (outlook 2010, 2013 , android phone etc) outgoing mail i can't get to work.

I have attached screen from webmail with SMTP error (250) : Authentication failed..With Outlook it will allow me to set up account, test account setting... it say all all complete if i don't set secure connection (SSL)/requires authentication. But when you try sending mails you get the error: Your message did not reach some or all of the intended recipients.

Subject:test
Sent:16/07/2014 15:13

The following recipient(s) cannot be reached:

'x@xxx.com' on 16/07/2014 15:13
Server error: '554 5.7.1 <x@xxx.com>: Relay access denied'

When you set the outgoing requires authentication/ advance SSL you get:Send test e-mail message: None of the authentication methods supported by this client are supported by your server.I have tried changing to some outgoing ports to no avail.

View 3 Replies View Related

Plesk Automation :: After PPA Migration - Outgoing SMTP Submission Port Error

Aug 29, 2013

After migrating our existing client base from legacy Plesk 9.x servers and Expand to PPA, clients phoned in with mail sending problems. These clients are using submission port 587 because their ISPs intercept port 25.

Existing client, Outlook error message:

"None of the authentication methods supported by this client are supported by your server"

Testing with Thunderbird, error message:

"An error occurred while sending mail. The mail server responded: 5.7.0 Must issue a STARTTLS command first. Please verify that your email address is correct in your Mail preferences and try again."

It seems a "fresh" PPA requires STARTTLS on e-mail clients. It is furthermore confirmed that Thunderbird detects the e-mail server settings as dependant on TLS.

The problem is that TLS doesn't seem to work properly by default.

In order to preserve our existing customer base, we follow: [URL] ....

Bottom line, in your /etc/postfix/master.cf, change the line that says "submission" from this:

submission inet n – - – - smtpd -o smtpd_enforce_tls=yes -o smtpd_tls_security_level=encyrpt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticate d,reject -o smtpd_sender_restrictions= -o smtpd_proxy_filter=127.$

to this:
submission inet n – - – - smtpd -o smtpd_enforce_tls=no -o smtpd_tls_security_level=may -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticate d,reject -o smtpd_sender_restrictions= -o smtpd_proxy_filter=127.$

then do:
/etc/init.d/postfix reload

This is just a quick fix to get you going and stop the phones from ringing. Ideally we would like to re-enable TLS and have information as to why it is not working.

View 2 Replies View Related

Exim Mail Server :: Your Outgoing SMTP E-mail Server Has Reported An Internal Error ...

Jul 2, 2008

I getting this error when our clients are sending mail from outlook but they are able to send mail from webmail.

we are using exim mail server and whm . i can't understand where is problem , anybody can help me ?

Sending' reported error (0x800CCC6A) : 'Your
outgoing (SMTP) e-mail server has reported an internal error. If you
continue to receive this message, contact your server administrator or
Internet service provider (ISP). The server responded: 451 Please try again
later.

View 4 Replies View Related

Spam Filtering

Jan 5, 2009

I used to have a reseller account and have shifted everything to a dedicated server. I now find that a couple of clients are getting lots of spam when they didn't before.

It seems that the servers used by the reseller account had some level of basic spam filtering installed; my provider suggested I look for a filtering program to install on my server.

There are, of course, dozens of them, so I wondered if anyone has any experience - enough, perhaps, to make a recommendation.

View 6 Replies View Related

POP3 Filtering

Apr 6, 2008

Even though I have temporarily installed Exchange Server on my dedicated server, I still am thinking about using POP3 instead, simply because of multiple email accounts and my outlook client can use multiple email accounts, and setup rules/filters to direct incoming emails to specific recepients to folders, which is what I want.

Sure, in Windows I know how to set up POP3 BUT what security can I setup for POP3 email accounts?

In addition, what about spam/filtering? How would I set that up to stop spam coming in?

View 6 Replies View Related

FTP With IP Address Filtering

Aug 4, 2008

I took over some sites that have a Windows hosting package. They're not high-traffic sites and the content is just typical corporate stuff; it's not sensitive information or anything.

Any they are insisting that they filter the IP addresses allowed to use the FTP account. So I have to give them my IP and it adds it to a safe list. this is causing me problems for urgent updates as sometimes I am working at home or somewhere away and my ISP gives me my IP dynamically, although it doesn't change that often.

Is this normal or necessary? I've never come across it before. I think it's overkill personally. What would you do? If they're worried about security should I ask them to set up SFTP and remove the IP filter?

View 6 Replies View Related

Email Filtering

Jun 1, 2008

I am having an issue with SPAM and baunced emails.

Spammers are sending out emails to thousands of addresses and putting my email in reply back field so i am getting all complaints/baunced emails etc.

I have DirectAdmin installed which lacks advanced email filtering features and wanted to know how can i setup Exim or what third party software to add to filter all incoming emails based on their subject?

I have Squirrelmail installed and it has these filters but the problem is that it applys its filters only on login and if i am checking email thru POP3 filters dont get applied.

View 3 Replies View Related

Exim Filtering

May 29, 2007

I would like to filter some special mails of mine through an external PHP script. Is this possible? I would like to call the php file everytime a mail arrives, and the php file will make changes to that mail text and save in inbox.

My PHP file is ready but i need to make this work in Exim.

View 0 Replies View Related

Spam Filtering

Feb 7, 2007

decent spam filtering service that allows you to do multiple domains and charges on a per user basis (with most you have to have the same domain or you have to buy another license pack). Anyway I'm looking to spend around $1-3 per user

View 0 Replies View Related

GoDaddy Spam Filtering

Oct 27, 2008

Does anybody know if GD filters email BEFORE it reaches my domain? It surely seems so. I recently moved to GD. I turned off spam filtering and don't receive any spam on accounts that used to receive a lot of spam. The only possible explanation is that they kill it before it reaches my domain.

View 5 Replies View Related

Which Email Filtering S/w Is Good

Apr 14, 2008

I am using SA+ClamAV+Qmail now. Is there any better solutions out there? Preferable free s/w.

View 1 Replies View Related

Managed Spam Filtering

Apr 10, 2008

if anyone may know of a server spam filtering product which has these features....

1. stops identified spam at the server and keeps it for a period of time eg 7 days before dumping it

2. forwards clean mail to end user

3. end user gets daily report via email of mail tagged and kept

4. clickable link in daily email report to 'release' mail and send it

5. auto whitelists released mail (ie adds it to bayesian database / whitelist addresses)

6. configurable to work with either individual end user, or with eg domain sysadmin (who can view / help see mail for all domain users)

7. can be either a hosted service, or server software product; although linux opensource server product would be good.....

8. not hugely expensive :-)

I have been using ASSP for quite some time; and like it's accuracy. So I suppose what ideally I'm looking for is ASSP with Bells and Whistles. On Cpanel I'm using grscripts ASSP deluxe, and this already has some great bells, but lacks a couple of the whistles I'd like (as above).

If anyone has ideas - or can point me to other threads (I did a search here already, but couldn't refine my search enough to find anything relevant)

View 14 Replies View Related

Email Filtering - Cpanel

Apr 25, 2008

My provider is using mailfoundry for spam filtering.. but I used IMAP (stored on server) for email.. my problem is that I'm also using a catch-all address and I make up random email names for sites I go to, to check for spam on the incoming side..

I setup filters in Cpanel to remove the selected spam or emails I don't wish to recieve.. but they don't seem to remove themselves.. it could just be a setup problem or it could be the mailfoundry.. not sure..

Here's the settings I have in cpanel (I just altered the name) is this the right setting.. or does it go elsewhere?

View 0 Replies View Related

Remote Spam Filtering

Jan 4, 2007

We have a serious spam email problem. Can anyone recommend a good Remote Spam Filtering service?

View 2 Replies View Related

Exim Filtering Jpg Attachments

Apr 6, 2007

Exim logs:

2007-04-05 15:07:45 1HZYFE-0003DC-Rr <= sales@mydomain.com H=(mta2.srv.hcvlny.cv.net) [167.206.4.197]:42573 I=[xxx.xxx.122.208]:25 P=esmtp S=9925 id=000801c777be$11815a50$34840ef0$@com T="test" from <sales@mydomain.com> for marco@customer.ca maria@customer.ca
2007-04-05 15:07:45 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1HZYFE-0003DC-Rr
2007-04-05 15:07:45 1HZYFE-0003DC-Rr => discarded (system filter)
2007-04-05 15:07:45 1HZYFE-0003DC-Rr Completed QT=1s

This only happens when a 4kb jpeg/jpg attachment is sent. Not sure where its getting caught.

My antivirus.exim file attached

I searched for "jpg" and "jpeg" in that file, nothing showed up.

Code:
# Exim filter
## Version: 0.17
#$Id: system_filter.exim,v 1.11 2001/09/19 11:27:56 nigel Exp $

## Exim system filter to refuse potentially harmful payloads in
## mail messages
## (c) 2000-2001 Nigel Metheringham <nigel@exim.org>
##
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##
## This program is distributed in the hope that it will be useful,
## but WITHOUT ANY WARRANTY; without even the implied warranty of
## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
## GNU General Public License for more details.
##
## You should have received a copy of the GNU General Public License
## along with this program; if not, write to the Free Software
## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
## -A copy of the GNU General Public License is distributed with exim itself

## -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
## If you haven't worked with exim filters before, read
## the install notes at the end of this file.
## The install notes are not a replacement for the exim documentation
## -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

## -----------------------------------------------------------------------
# Only run any of this stuff on the first pass through the
# filter - this is an optomisation for messages that get
# queued and have several delivery attempts
#
# we express this in reverse so we can just bail out
# on inappropriate messages
#
if not first_delivery
then
finish
endif

## -----------------------------------------------------------------------
# Check for MS buffer overruns as per BUGTRAQ.
# [url]
# This could happen in error messages, hence its placing
# here...
# We substract the first n characters of the date header
# and test if its the same as the date header... which
# is a lousy way of checking if the date is longer than
# n chars long
if ${length_80:$header_date:} is not $header_date:
then
fail text "This message has been rejected because it has

an overlength date field which can be used

to subvert Microsoft mail programs

The following URL has further information
[url]
seen finish
endif

## -----------------------------------------------------------------------
# These messages are now being sent with a <> envelope sender, but
# blocking all error messages that pattern match prevents
# bounces getting back.... so we fudge it somewhat and check for known
# header signatures. Other bounces are allowed through.
if $header_from: contains "@sexyfun.net"
then
fail text "This message has been rejected since it has

the signature of a known virus in the header."
seen finish
endif
if error_message and $header_from: contains "Mailer-Daemon@"
then
# looks like a real error message - just ignore it
finish
endif

## -----------------------------------------------------------------------
# Look for single part MIME messages with suspicious name extensions
# Check Content-Type header using quoted filename [content_type_quoted_fn_match]
if $header_content-type: matches "(?:file)?name=("[^"]+\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc])")"
then
fail text "This message has been rejected because it has

potentially executable content $1

This form of attachment has been used by

recent viruses or other malware.

If you meant to send this file then please

package it up as a zip file and resend it."
seen finish
endif
# same again using unquoted filename [content_type_unquoted_fn_match]
if $header_content-type: matches "(?:file)?name=(\S+\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc]))"
then
fail text "This message has been rejected because it has

potentially executable content $1

This form of attachment has been used by

recent viruses or other malware.

If you meant to send this file then please

package it up as a zip file and resend it."
seen finish
endif

## -----------------------------------------------------------------------
# Attempt to catch embedded VBS attachments
# in emails. These were used as the basis for
# the ILOVEYOU virus and its variants - many many varients
# Quoted filename - [body_quoted_fn_match]
if $message_body matches "(?:Content-(?:Type:(?>\s*)[\w-]+/[\w-]+|Disposition:(?>\s*)attachment);(?>\s*)(?:file)?name=|begin(?>\s+)[0-7]{3,4}(?>\s+))("[^"]+\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc])")[\s;]"
then
fail text "This message has been rejected because it has

a potentially executable attachment $1

This form of attachment has been used by

recent viruses or other malware.

If you meant to send this file then please

package it up as a zip file and resend it."
seen finish
endif
# same again using unquoted filename [body_unquoted_fn_match]
if $message_body matches "(?:Content-(?:Type:(?>\s*)[\w-]+/[\w-]+|Disposition:(?>\s*)attachment);(?>\s*)(?:file)?name=|begin(?>\s+)[0-7]{3,4}(?>\s+))(\S+\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc]))[\s;]"
then
fail text "This message has been rejected because it has

a potentially executable attachment $1

This form of attachment has been used by

recent viruses or other malware.

If you meant to send this file then please

package it up as a zip file and resend it."
seen finish
endif
## -----------------------------------------------------------------------


#### Version history
#
# 0.01 5 May 2000
#Initial release
# 0.02 8 May 2000
#Widened list of content-types accepted, added WSF extension
# 0.03 8 May 2000
#Embedded the install notes in for those that don't do manuals
# 0.04 9 May 2000
#Check global content-type header. Efficiency mods to REs
# 0.05 9 May 2000
#More minor efficiency mods, doc changes
# 0.06 20 June 2000
#Added extension handling - thx to Douglas Gray Stephens & Jeff Carnahan
# 0.07 19 July 2000
#Latest MS Outhouse bug catching
# 0.08 19 July 2000
#Changed trigger length to 80 chars, fixed some spelling
# 0.09 29 September 2000
#More extensions... its getting so we should just allow 2 or 3 through
# 0.10 18 January 2001
#Removed exclusion for error messages - this is a little nasty
#since it has other side effects, hence we do still exclude
#on unix like error messages
# 0.11 20 March, 2001
#Added CMD extension, tidied docs slightly, added RCS tag
#** Missed changing version number at top of file :-(
# 0.12 10 May, 2001
#Added HTA extension
# 0.13 22 May, 2001
#Reformatted regexps and code to build them so that they are
#shorter than the limits on pre exim 3.20 filters. This will
#make them significantly less efficient, but I am getting so
#many queries about this that requiring 3.2x appears unsupportable.
# 0.14 15 August,2001
#Added .lnk extension - most requested item :-)
#Reformatted everything so its now built from a set of short
#library files, cutting down on manual duplication.
#Changed w in filename detection to . - dodges locale problems
#Explicit application of GPL after queries on license status
# 0.15 17 August, 2001
#Changed the . in filename detect to S (stops it going mad)
# 0.16 19 September, 2001
#Pile of new extensions including the eml in current use
# 0.17 19 September, 2001
#Syntax fix

View 0 Replies View Related

How To Pass Through Postini Spam Filtering

Apr 7, 2008

I've got a PHP mail system which sends emails with these headers: ....

View 1 Replies View Related

Email Piping And Spam Filtering

Mar 7, 2008

I have SpamAssassin on my server, and I use email piping to forward incoming emails to a PHP script. I'd like to know if emails go through SpamAssassin before being piped, or if they don't go through SpamAssasin. Where exactly is SpamAssassin requested to scan emails?

View 5 Replies View Related

Amazing Spam Filtering At Reliablesite

May 12, 2008

reliablesite has filtered 100% of the spam emails

View 8 Replies View Related

Exim Filtering Options In Cpanel

Sep 11, 2008

more specific filtering options in cpanel exactly:

if header from contains 'example' and also header from contains 'example2' then discard

in cpanel it just has one word or phrase i need the filter to check for 2 words in any order in the from field

View 1 Replies View Related

Recommendation For An MS Exchange Admin Who Knows How To Set Up Spam Filtering

Aug 4, 2008

We have a customer who has their own in-house Exchange server. The problem (don't ge me started!) is that they get a LOT of spam.

We've been looking for some kind of hosted barracuda service, but can't seem to find anything reasonably priced.

So... I'm thinking that maybe for a one-time setup fee we can help them find an Exchange admin who can set them up with Spam Assassin or some other *simple* but effective spam filtering system on their server.

View 4 Replies View Related

CPanel + Exim + User Level Filtering

Nov 18, 2008

whether our webhost has their configuration messed up, or if this is not genuinely possible with cpanel + exim + shared hosting.

Our email server is hosted with the web host, and what we want to do is to not allow certain users to be able to receive (And send) outgoing email to non-local domains e.g. they should only be able send and receive within our hosted domain, @mydomain.com .

Now, we've tried doing this using cpanel's user level filters and have setup the following:

Rules:
If Field To does not contain @mydomain.com OR
If Field From does not contain @mydomain.com

Action:

Fail with message.

We've tested these filters using combinations and they seem to be working as far as we can see on cpanel (it has the filter testing feature)

Now this works for people sending emails into our domain e.g. someone from hotmail tries sending emails to a user, and it bounces back.

But people from inside the domain can send emails to other domains even when they give valid results on the cpanel filter tester.

View 3 Replies View Related

Linux Firewall - Filtering Out Zero Length Packets

Aug 13, 2008

I run CentOS 5.2 (Sometimes CentOS 4.6). I have been messing around with IPTables, and cannot find out how to filter zero-length packets.

I believe I might need an unclean module. I have already done hours of reading and researching, but I have come up with nothing, for I do not think this is that common.

If anyone could please let me know the commands to use to filter out all zero-length packets, or the unclean module I need to use with IPTables, I would really appreciate it.

View 14 Replies View Related

Bring Web-filtering Inhouse - Appliance / Application

May 1, 2008

I have a requirement to bring web-filtering inhouse on our own hardware.

This is to support up to 50 remote sites - I've looked at iron port / barracuda but Im not sure if it can do what is required.

I need each remote site to effectively have a seperate 'account' with the ability for each sites manager to see the traffic just for their site, create users for that site, specify site specific blocks / allows and also monitor which users are browsing which sites.

Does anyone know of a product or application that allows this sort of segmentation? I'm not a big fan of Surf Control (I don't believe it's able to deal with this sort of setup)

The other option is 1 appliance per remote site - but the costs associated with this are probably out of our budget for this project.

This one's an itnerestign one thats been bugging me for a while!

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved