Search found 862 matches

by Sarah
15 May 2023, 16:20
Forum: MailScanner
Topic: Creation of "number.dat" files not present in mailsource, that then trigger "Bad Filename Detected"
Replies: 10
Views: 19672

Re: Creation of "number.dat" files not present in mailsource, that then trigger "Bad Filename Detected"

The files are being blocked by the fileTYPE checking. Microsoft documents often cause this problem. You can disable extracting of Microsoft documents by setting "Unpack Microsoft Documents" in the MailScanner Configuration to no, and see if that resolves the issue. If that doesn't work, yo...
by Sarah
24 Feb 2023, 22:13
Forum: General Discussion (cxs)
Topic: How to ignore a resource
Replies: 1
Views: 3225

Re: How to ignore a resource

You'd need to create a regular expression to match the files you want to ignore, and use the pfile: keyword in cxs.ignore. For example, if you want to ignore all files with a name containing "error.log" in any user's public_html directory (or subdirectories of that directory), you could tr...
by Sarah
21 Feb 2023, 21:42
Forum: MailScanner Front-End
Topic: MailScanner MailControl
Replies: 3
Views: 3244

Re: MailScanner MailControl

Yes, feel free to submit a ticket on the helpdesk and we'll try to help.
by Sarah
17 Feb 2023, 22:31
Forum: MailScanner Front-End
Topic: RBL's - Can I use them to give a score rather than block?
Replies: 1
Views: 2696

Re: RBL's - Can I use them to give a score rather than block?

If you want to give spamassassin scores to different RBLs, you would need to do this within SpamAssassin, not the MailScanner Front-End. I believe the RBL tests are defined in /var/lib/spamassassin/3.004006/updates_spamassassin_org/20_dnsbl_tests.cf, and you can modify the scores of those tests by a...
by Sarah
17 Feb 2023, 22:19
Forum: MailScanner Front-End
Topic: MailScanner MailControl
Replies: 3
Views: 3244

Re: MailScanner MailControl

This setting should take effect overnight when the back-end scripts run. Have you waited until the next day and checked then? If so, and the number of entries in MailControl is still more days than it should be (bearing in mind that if you set it to 1 day, there still may be up to nearly 2 days of e...
by Sarah
03 Feb 2023, 16:21
Forum: MailScanner Front-End
Topic: MSFE Spambox - Spam emails not moving to spam folder.
Replies: 2
Views: 1237

Re: MSFE Spambox - Spam emails not moving to spam folder.

Please log a ticket on the helpdesk for assistance with your supported configserver script.
https://support.configserver.com/

Regards,
Sarah
Configserver.com
by Sarah
10 Jan 2023, 09:01
Forum: MailScanner Front-End
Topic: MAILCONTROL user button for black/whitelist ip/domain.
Replies: 2
Views: 1292

Re: MAILCONTROL user button for black/whitelist ip/domain.

Thanks, Sergio, Happy New Year to you and your family too. I will pass along your suggestions to Jonathan for the possibility of future development. I understand the desire for whitelist/blacklist buttons for email, domain and IP address, but can you elaborate on why you think having the IP column i...
by Sarah
10 Jan 2023, 08:47
Forum: MailScanner Front-End
Topic: "Learn as spam & report" is not reporting to spamcop, so where to?
Replies: 1
Views: 1131

Re: "Learn as spam & report" is not reporting to spamcop, so where to?

The report feature just calls spamassassin's own script: spamassassin --report
This reports the spam to the checksum services Razor, DCC and/or Pyzor. It does not report to Spamcop.
by Sarah
10 Jan 2023, 08:41
Forum: General Discussion (cxs)
Topic: STICKY rules for CXS.XTRA regs.
Replies: 71
Views: 195396

Re: STICKY rules for CXS.XTRA regs.

If this is a script or application that you did not put on your server, and it is actually located in the root directory as per your post, then it is not a cxs issue because it's an indication your server may be root compromised. Cxs is not designed to scan for rootkits or root compromises, there ar...
by Sarah
25 Nov 2022, 06:16
Forum: General Discussion (cxs)
Topic: Can't make cxs.ignore work
Replies: 4
Views: 4379

Re: Can't make cxs.ignore work

The reason it's not working is that this isn't a cxswatch alert. It's from cxs cgi scanning (modsecurity scanning). Cxs is not reporting the file admin-ajax.php as an exploit, it is reporting that the file admin-ajax.php is being used to upload possible exploits. I don't think you really want to ign...