How to Limit SMTP to authenticated and trustedmailhosts
Could use some help on this one. Spammers are consistently bypassing the MX records for domains. This is a spam filter appliance which would filter out the junk.
We want to be able to block all SMTP servers and traffic to our CPanel Exim service unless
1) the user is authenticated
2) the standard checks such as POP before SMTP are satisfied
3) the server is listed in our trustedmailhosts file (or similar)
What type of ACL statement do we put in and where do we put it?
We especially want this to survive upgrades, so having the option to put it into custom configurations would be preferred.
-
Hello, Do multiple MX records exist for these domain names, with the higher/lower priority record pointing directly to the cPanel mail server? If so, you may want to point all MX records to the SPAM appliance to prevent spammers from finding the actual mail server. Otherwise, have you considered alternatives to a custom Exim ACL rule such as rejecting senders who fail SPF or DKIM verification? There are several options available to block spammers at SMTP time in WHM >> Exim Configuration Manager >> Basic Editor: Exim Configuration Manager - Documentation - cPanel Documentation Thank you. 0 -
The only MX record for each domains already points to the spam filter. So, we really do want to lock out SMTP connections to the CPanel server unless it meets the criteria listed above. The spammers don't obey MX records. They connect to the root or www domain and try to send e-mail directly that way. Any help on what ACL to use and where to put it? 0 -
Hello, I believe the discussion in the following thread matches what you are seeking: Stop Incoming Email Except from External Spam Filter Thank you. 0
Please sign in to leave a comment.
Comments
3 comments