ConfigServer Community Forum

I'm running Exim on CentOS with pop3 mail boxes. If I try to open an email via WHM 'Mail Delivery Reports' after the user has downloaded it, it fails, as the message no longer exists. However, I can still open the message via MSFE 'MailControl' Does MSFE store email messages after theyv'e been downl...

If mailscanner doesnt do this, then I'm pretty sure Relay Tracking in CSF does.

I want to change a few SpamAssisin scores,
I take it that I need to modify /usr/mailscanner/etc/spamassasin.conf and then reload and restart MSFE ?

Is MSFE actually reading the rules.
I ran a mailscanner lint test and found that the rules were unable to be read.
Re- running the install fixed this for me.

Hi Sarah

I suspect my install wasn't quite right, as i've also been seeing a message about not being unable to read the rules (I have a support ticket open).
I re-ran the install this afternoon and now the reading rules failure has subsided, and I suspect now scanning files.

Thanks.

Added allow \.clk$ - -

And now the file is going through.

Is it possible to whitelist a file type ? Customer sent a remittance advice to our sales dept as a HTML file. For security purposes, our internal firewall locks these files, so that they can't be opened without prior investigation. It gives it a file name ending clk.. eg filename.clk The sales depar...

I installed MSFE last week, so I'm watching the logs and activity avidly. Today, an email was passed to the end user, which I suspect contains multiple virus. It contained a number of compressed ACE files, which upon investigation both contain EXE's. I've now added ACE to the list of zip files in MS...

Looking at other custom regex rules, it's difficult to figure out exactly how they work. So I copied someone elses and modified it slightly. Would somethink like this do it ? if (($lgfile eq $config{CUSTOM2_LOG}) and ($line =~ /^\S+\s+\S+\s+Dropping connection from \[(\S+)\]/)) { return ("cpane...

Guys. Could someone help me with a custom regex to block failed cpanel logins. I see quite a number of these daily. Dropping connection from xx.xxx.xx.xx because of tcp_wrappers at cpsrvd.pl line 4191 If there are only one or two entries, then i don't worry too much, but occasionally, i'll get some ...