Skip to main content

Spoofed From Field

Comments

5 comments

  • cPanelMichael
    I have enabled SPF, DKIM, Boxtrapper and Spam Assassin.

    Hello, Have you enabled SPF and DKIM verification in the Exim Configuration Manager in WHM, or have you enabled SPF/DKIM records in your domain name's DNS zone? Thank you.
    0
  • Keelan
    Hello, Have you enabled SPF and DKIM verification in the Exim Configuration Manager in WHM, or have you enabled SPF/DKIM records in your domain name's DNS zone? Thank you.

    Via Cpanel > Authentication v=spf1 +a +mx +ip4:SERVERIP +ip4:OFFICEIP -all exim i have reject spf failures on Allow DKIM verification for incoming messages = off which wont let me turn on reject dkim failures.
    0
  • cPanelMichael
    Allow DKIM verification for incoming messages = off which wont let me turn on reject dkim failures.

    You may want to consider enabling "Allow DKIM verification for incoming messages" so you can then reject DKIM failures. Thank you.
    0
  • Keelan
    You may want to consider enabling "Allow DKIM verification for incoming messages" so you can then reject DKIM failures. Thank you.

    I just did this too. Hopefully that helps. Could i consider lowering my spam score to something like 1. Since boxtrapper should catch them anyways. Im still not quite sure why the boxtrapper is letting them through even though it isn't on the white list is this simply because it things the from domain is local?
    0
  • cPanelMichael
    Could i consider lowering my spam score to something like 1. Since boxtrapper should catch them anyways. Im still not quite sure why the boxtrapper is letting them through even though it isn't on the white list is this simply because it things the from domain is local?

    You can review the specific message in /var/log/exim_mainlog to determine how it's processed. EX:
    exigrep MSGID /var/log/exim_mainlog
    Also, you should review the message header to see what the score is before lowering the SPAM score requirements. Thank you.
    0

Please sign in to leave a comment.