Thank you for the response. In the future I'll create a separate post.
I hope you can post the amavis author's response here some time.
Thanks,
Daniel
Preventing spoofed email
-
reason2008
- Posts: 23
- Joined: Fri Sep 12, 2014 11:51 pm
Re: Preventing spoofed email
My server is running 8.6. How can I tell whether or not DMARC is enabled and running?
Re: Preventing spoofed email
Zimbra uses SpamAssassin to flag anything that fails DMARC as a high probability SPAM. So there is nothing you have to do for DMARC to be "running" in 8.6, if you are using the Zimbra MTA with antispam installed.reason2008 wrote:My server is running 8.6. How can I tell whether or not DMARC is enabled and running?
For DMARC to work with your domain, you do have to set up DKIM and SPF for the domain.
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Re: Preventing spoofed email
Hi Daniel,dbayer wrote:Thank you for the response. In the future I'll create a separate post.
I hope you can post the amavis author's response here some time.
Thanks,
Daniel
You can track the response here as well:
https://lists.amavis.org/pipermail/amav ... hread.html
I finally got the question sent out today.
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Re: Preventing spoofed email
Filed [bug]104677[/bug] for this issue.
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
-
reason2008
- Posts: 23
- Joined: Fri Sep 12, 2014 11:51 pm
Re: Preventing spoofed email
I've gotten both SPF and DKIM set up and working. I also have DMARC set up in DNS. I've sent some messages to gmail and I see that gmail is validating the SPF, DKIM, and DMARC records fine.
I would like to be able to somehow prevent someone from spoofing the From: header in email messages to make it look like mail is coming from internal users. Is there a score somewhere I can tweak to prevent mail that fails DMARC for my domain from being delivered?
I would like to be able to somehow prevent someone from spoofing the From: header in email messages to make it look like mail is coming from internal users. Is there a score somewhere I can tweak to prevent mail that fails DMARC for my domain from being delivered?
Re: Preventing spoofed email
You can look at salocal.cf.in. It scores such spoofing as -9, which is a pretty good score.reason2008 wrote:I've gotten both SPF and DKIM set up and working. I also have DMARC set up in DNS. I've sent some messages to gmail and I see that gmail is validating the SPF, DKIM, and DMARC records fine.
I would like to be able to somehow prevent someone from spoofing the From: header in email messages to make it look like mail is coming from internal users. Is there a score somewhere I can tweak to prevent mail that fails DMARC for my domain from being delivered?
--
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
Quanah Gibson-Mount
Product Architect, Symas http://www.symas.com/
OpenLDAP Core team http://www.openldap.org/project/
-
dbayer
- Advanced member
- Posts: 84
- Joined: Thu Oct 09, 2014 9:10 am
- Location: Maine
- ZCS/ZD Version: Zimbra 10.0.5
- Contact:
Re: Preventing spoofed email
Thank you! I'll check it out.quanah wrote:
Hi Daniel,
You can track the response here as well:
https://lists.amavis.org/pipermail/amav ... hread.html
I finally got the question sent out today.
Regards,
Quanah