SOLVED [CPANEL-26054] SpamAssassin forwards locally delivered SPAM

L

LBJ

Well-Known Member
Nov 1, 2003
117
24
168
cPanel Access Level
DataCenter Provider
G'day All,

I can never find an obvious place to lodge bug reports other than by raising a support ticket, so I'll try it here.

On all our 76.0.20 servers, the option to scan outgoing and forwarded email is not detecting definite spam created on-server and sent to an external address via a forwarder.

Only email sent directly to an external address is being correctly handled.

This makes it very easy to spam from a compromised account on cPanel servers.


Steps to reproduce:

1. Enable the following Exim options...

Scan outgoing messages for spam and reject based on defined Apache SpamAssassin™ score

Do not forward mail to external recipients based on the defined Apache SpamAssassin™ score

2. Generate a spam message from the server (PHP mailto() for example) to a forwarder pointing to an external address. Use the SpamAssassin GTUBE string for spam.

The spam will be delivered without issue.

Outgoing spam is only blocked if sent directly to the external address. Using a forwarder completely bypasses the security.

Best regards,

LBJ
 
  • Like
Reactions: akust0m
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,267
463
Hi @LBJ,

As you noted, internal case CPANEL-26054 was opened to report an issue where the option to scan outgoing and forwarded email is not detecting definite SPAM created on-server and sent to an external address via a forwarder. I'll monitor this case and update this thread with more information on it's status as it becomes available.

Thank you.
 
L

LBJ

Well-Known Member
Nov 1, 2003
117
24
168
cPanel Access Level
DataCenter Provider
cPanelMichael said:
Hi @LBJ,

As you noted, internal case CPANEL-26054 was opened to report an issue where the option to scan outgoing and forwarded email is not detecting definite SPAM created on-server and sent to an external address via a forwarder. I'll monitor this case and update this thread with more information on it's status as it becomes available.

Thank you.
Click to expand...
G'day Michael,

Is there any update on this, or at least a likely time-frame?

We're still forced to add complex code to fully block webform spam where users have opted to email out via a configured forwarder to an external email address.

Best regards,

LBJ
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,267
463
Hello @LBJ,

This case is fixed in cPanel & WHM version 82 (this version is not yet available to the public). You should see this version published to the EDGE release tier some time after version 80 reaches STABLE.

Thank you.
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,267
463
Hello,

To update, here's the entry in the cPanel & WHM version 82 Change Log noting the fix for this issue:

Fixed case CPANEL-26054: Spam scan emails with a local destination, but an external forwarded address if enabled in Exim tweak settings.

You can see which versions are published to each Release Tier on the link below:

Latest cPanel & WHM Builds

Thank you.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
imorandin In Progress CPANEL-43323 - doveadm priority (nice) Email 4
C In Progress CPANEL-42825 - Random address mass mailing Email 7
M In Progress CPANEL-43178 - WHM Email Relay Reporting Email 3
T No email service after upgrade to cPanel 112 Email 1
M SOLVED CPANEL-43144 - Export Email folder on Roundcube Email 4
Similar threads
In Progress CPANEL-43323 - doveadm priority (nice)
In Progress CPANEL-42825 - Random address mass mailing
In Progress CPANEL-43178 - WHM Email Relay Reporting
No email service after upgrade to cPanel 112
SOLVED CPANEL-43144 - Export Email folder on Roundcube
Top Bottom