Greetings,
We have started to encounter initially a Spamming through using our User E-mail (10 Accounts have already done this as of today) as a relay to send thousands of E-mails to several E-mails that we have no contact with or is outside of our country.
Then this October, we started to receive a spoofed e-mail that is using the names of our employee and replying to an e-mail thread that they have previously sent but it is from a different e-mail (not from our domain either), it sometimes contains a Word (.doc) file.
I've done several actions already on the cPanel and WHM.
Please see below changes I've done.
- Reset the Password of the E-mail User that is being a relay of Spam and check their workstations for Malwares.
- Configured the sending per hour limit of the E-mails to avoid thousands of being sent.
- Configured Spam Assassin on cPanel.
- Configured further the Spam Assassin on WHM (Exim Configuration Manager).
But prior to the configurations I have done, the issues still occur, receiving Spoofed E-mails and Spamming relay from our E-mail Users.
Seeking assistance the necessary settings that I need to further fortify the receiving of spoofing or an automated response also from the spammed users ( I have somehow observed that the spammed users from the relay are also victims thus we are also receiving a spam from them and some has spoofed our own Names/E-mail).
* What is the best Apache SpamAssassin™ score (Outgoing), current score I placed is 15.5 but spamming (via relay) is still happening.
* What is the best Apache SpamAssassin™ reject spam score 15.5 also, we are still receiving spam and spoofed e-mails
* What other settings should I do both on the cPanel and WHM.
We have started to encounter initially a Spamming through using our User E-mail (10 Accounts have already done this as of today) as a relay to send thousands of E-mails to several E-mails that we have no contact with or is outside of our country.
Then this October, we started to receive a spoofed e-mail that is using the names of our employee and replying to an e-mail thread that they have previously sent but it is from a different e-mail (not from our domain either), it sometimes contains a Word (.doc) file.
I've done several actions already on the cPanel and WHM.
Please see below changes I've done.
- Reset the Password of the E-mail User that is being a relay of Spam and check their workstations for Malwares.
- Configured the sending per hour limit of the E-mails to avoid thousands of being sent.
- Configured Spam Assassin on cPanel.
- Configured further the Spam Assassin on WHM (Exim Configuration Manager).
But prior to the configurations I have done, the issues still occur, receiving Spoofed E-mails and Spamming relay from our E-mail Users.
Seeking assistance the necessary settings that I need to further fortify the receiving of spoofing or an automated response also from the spammed users ( I have somehow observed that the spammed users from the relay are also victims thus we are also receiving a spam from them and some has spoofed our own Names/E-mail).
* What is the best Apache SpamAssassin™ score (Outgoing), current score I placed is 15.5 but spamming (via relay) is still happening.
* What is the best Apache SpamAssassin™ reject spam score 15.5 also, we are still receiving spam and spoofed e-mails
* What other settings should I do both on the cPanel and WHM.