All domains on our server are getting lots of spam with zip attachments with subject line invoice, Transactions details, Fwd: DHL Shipment Documents : 9079991203 how can we disable it ? Can we add new rules in spamassasin?
Dear Till, thank you for your quick response. Can you tell me where exactly? also will it be applicable for all domains we are hosting on server?
In ISPConfig: Mail > Global > Content filter You can find examples for these filters in the ISPConfig manual, or you take a look at the postfix documentation for header and body filters in postfix (thats the kind of filters that ispconfig applies here). yes.
Postfix header/body checks are not a 'setting' per se, you would need to create rules to match the messages you're receiving. If you're not familiar with regular expressions you may have a bit of a learning curve, but there are examples available in google. You'd probably need to see the actual message, but assuming what @florix.net meant was it has: Code: Subject: invoice, Transactions details, Fwd: DHL Shipment Documents : 9079991203 then a regex similar to this should match: Code: /^Subject: .*invoice, Transactions details, Fwd: DHL Shipment Documents : [[:digit:]+]/ On the problem generally (blocking these emails), make sure you're making use of the sanesecurity signatures, as they catch a lot of those. http://sanesecurity.com/usage/signatures/
You could have a look at my little script: https://www.howtoforge.com/communit...ostfix-blacklisting-and-content-filter.71122/
