Stopping incoming forged emails

psytanium

• February 27, 2017 14:18

Hi, I have a user on my VPS receiving regularly forged emails. When they phone call back the true sender, he deny sending any emails. I tired it myself, I used emkei.cz/ and forged my self and it worked. I tried to send forged email to my Gmail account, it didn't worked, considered spam and just filtered. I tried it after turning on "Allow DKIM verification for incoming messages" and "Reject DKIM failures" and restart exim. Still same results, is there a way to block those incoming forged emails ? Just want to add that Boxtrapper and SpamAssassin are turned on. Thank you

• 

  cPanelMichael

  • February 27, 2017 20:42

  Hello, Have you considered enabling the Greylisting feature in "WHM >> Email >> Greylisting"? Per it's description: When enabled, the mail server will temporarily reject any email from a sender the server does not recognize. If the email is legitimate, the originating server will try again after a delay. After sufficient time has elapsed, the server will accept the email.
  It's documented at: Greylisting - Documentation - cPanel Documentation Thank you.

  0
• 

  psytanium

  • February 27, 2017 21:57

  Thanks. I'm experimenting this feature. Not so promising as most forged emails are recognized by the mail client and server. I think there no solution for spear phishing.

  0
• 

  psytanium

  • February 27, 2017 22:29

  It worked on Gmail and outlook accounts too, if you use a recognized email address.

  0
• 

  cPanelMichael

  • February 28, 2017 14:04

  Hello, You may also find the following thread helpful when seeking out additional solutions for blocking SPAM: New anti-spam DNSBL in the works -- looking for testers Thank you.

  0

Please sign in to leave a comment.