Re: [exim] How to block using exim re:[doctor@nk.ca: Your ac…

Top Page
This message is part of the following thread:
M--++\the complete thread tree sorted by date
M-\MMMJeremy Harris at <-
M\MMMCyborg at ->
Delete this message
Reply to this message
Author: Graeme Fowler
Date:  
To: Exim-users
Subject: Re: [exim] How to block using exim re:[doctor@nk.ca: Your account has been hacked! You need to unlock.]
On 27 Jan 2019, at 12:33, The Doctor via Exim-users <exim-users@???> wrote:
> am certain many of you have seen this, but how do you block / bounce said
> below e-mail via exim using spamassassin / clamd ?

Install at least the ‘phish’ database from SaneSecurity into ClamAV and let it do the heavy lifting with its’ Fake.Coin signatures. As Jeremy mentioned, doing it manually is a whack-a-mole job.

You won’t catch all of them all of the time, but you’ll get rid of a lot. On Friday & Saturday we rejected nearly 40000 & 30000 messages respectively on that detection alone (with no complaints), and we’re up to 10000 today already.

Graeme
This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] How to block using exim re:[doctor@nk.ca: Your account has been hacked! You need to unlock.]Re: [exim] How to block using exim re:[doctor@nk.ca: Your account has been hacked! You need to unlock.]->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)