Search found 70 matches

Search found 70 matches Page 4 of 7
by keat63
13 Jun 2017, 11:57
Forum: MailScanner Front-End
Topic: How to set Mail Control to warning after 500 emails sent on few hours?
Replies: 2
Views: 1131

If mailscanner doesnt do this, then I'm pretty sure Relay Tracking in CSF does.
by keat63
13 Jun 2017, 11:52
Forum: MailScanner Front-End
Topic: changing SA scores
Replies: 2
Views: 1063

I want to change a few SpamAssisin scores,
I take it that I need to modify /usr/mailscanner/etc/spamassasin.conf and then reload and restart MSFE ?
by keat63
12 Jun 2017, 15:55
Forum: MailScanner Front-End
Topic: MailScanner dangerous attachments not being blocked
Replies: 1
Views: 852

Is MSFE actually reading the rules.
I ran a mailscanner lint test and found that the rules were unable to be read.
Re- running the install fixed this for me.
by keat63
12 Jun 2017, 15:51
Forum: MailScanner Front-End
Topic: Virus got through
Replies: 2
Views: 1123

Hi Sarah

I suspect my install wasn't quite right, as i've also been seeing a message about not being unable to read the rules (I have a support ticket open).
I re-ran the install this afternoon and now the reading rules failure has subsided, and I suspect now scanning files.
by keat63
12 Jun 2017, 15:43
Forum: MailScanner Front-End
Topic: whitelist file attachments
Replies: 2
Views: 841

Thanks.

Added allow \.clk$ - -

And now the file is going through.
by keat63
12 Jun 2017, 15:13
Forum: MailScanner Front-End
Topic: whitelist file attachments
Replies: 2
Views: 841

Is it possible to whitelist a file type ? Customer sent a remittance advice to our sales dept as a HTML file. For security purposes, our internal firewall locks these files, so that they can't be opened without prior investigation. It gives it a file name ending clk.. eg filename.clk The sales depar...
by keat63
12 Jun 2017, 10:44
Forum: MailScanner Front-End
Topic: Virus got through
Replies: 2
Views: 1123

I installed MSFE last week, so I'm watching the logs and activity avidly. Today, an email was passed to the end user, which I suspect contains multiple virus. It contained a number of compressed ACE files, which upon investigation both contain EXE's. I've now added ACE to the list of zip files in MS...
by keat63
19 Nov 2015, 08:28
Forum: General Discussion (csf)
Topic: Custom regex to block failed cpanel logins
Replies: 1
Views: 1449

Looking at other custom regex rules, it's difficult to figure out exactly how they work. So I copied someone elses and modified it slightly. Would somethink like this do it ? if (($lgfile eq $config{CUSTOM2_LOG}) and ($line =~ /^\S+\s+\S+\s+Dropping connection from \[(\S+)\]/)) { return ("cpanel_log...
by keat63
17 Nov 2015, 08:55
Forum: General Discussion (csf)
Topic: Custom regex to block failed cpanel logins
Replies: 1
Views: 1449

Guys. Could someone help me with a custom regex to block failed cpanel logins. I see quite a number of these daily. Dropping connection from xx.xxx.xx.xx because of tcp_wrappers at cpsrvd.pl line 4191 If there are only one or two entries, then i don't worry too much, but occasionally, i'll get some ...
by keat63
17 Nov 2015, 08:51
Forum: General Discussion (csf)
Topic: Block FTP Access except for whitelisted IP's
Replies: 3
Views: 1958

What back end are you using.

Host Access Control in WHM will perform this brilliantly.
Search found 70 matches Page 4 of 7