Stopping incoming forged emails

[psytanium]

Hi,

I have a user on my VPS receiving regularly forged emails. When they phone call back the true sender, he deny sending any emails.

I tired it myself, I used emkei.cz/ and forged my self and it worked. I tried to send forged email to my Gmail account, it didn't worked, considered spam and just filtered.

I tried it after turning on "Allow DKIM verification for incoming messages" and "Reject DKIM failures" and restart exim. Still same results, is there a way to block those incoming forged emails ?

Just want to add that Boxtrapper and SpamAssassin are turned on.

Thank you

 

[cPanelMichael]

Hello,

Have you considered enabling the Greylisting feature in "WHM >> Email >> Greylisting"? Per it's description:

When enabled, the mail server will temporarily reject any email from a sender the server does not recognize. If the email is legitimate, the originating server will try again after a delay. After sufficient time has elapsed, the server will accept the email.

It's documented at:

Greylisting - Documentation - cPanel Documentation

Thank you.

 

[psytanium]

Thanks. I'm experimenting this feature. Not so promising as most forged emails are recognized by the mail client and server. I think there no solution for spear phishing.

 

[psytanium]

It worked on Gmail and outlook accounts too, if you use a recognized email address.

 

[cPanelMichael]

Hello,

You may also find the following thread helpful when seeking out additional solutions for blocking SPAM:

New anti-spam DNSBL in the works -- looking for testers

Thank you.