Author: Graeme Fowler Date: To: Exim-users Subject: Re: [exim] How to block using exim re:[doctor@nk.ca: Your account
has been hacked! You need to unlock.]
On 27 Jan 2019, at 12:33, The Doctor via Exim-users <exim-users@???> wrote: > am certain many of you have seen this, but how do you block / bounce said
> below e-mail via exim using spamassassin / clamd ?
Install at least the ‘phish’ database from SaneSecurity into ClamAV and let it do the heavy lifting with its’ Fake.Coin signatures. As Jeremy mentioned, doing it manually is a whack-a-mole job.
You won’t catch all of them all of the time, but you’ll get rid of a lot. On Friday & Saturday we rejected nearly 40000 & 30000 messages respectively on that detection alone (with no complaints), and we’re up to 10000 today already.