Stopping incoming forged emails

psytanium

Well-Known Member
Jun 6, 2014
282
15
68
Lebanon
cPanel Access Level
Root Administrator
Hi,

I have a user on my VPS receiving regularly forged emails. When they phone call back the true sender, he deny sending any emails.

I tired it myself, I used emkei.cz/ and forged my self and it worked. I tried to send forged email to my Gmail account, it didn't worked, considered spam and just filtered.

I tried it after turning on "Allow DKIM verification for incoming messages" and "Reject DKIM failures" and restart exim. Still same results, is there a way to block those incoming forged emails ?

Just want to add that Boxtrapper and SpamAssassin are turned on.

Thank you
 
Last edited by a moderator:

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,909
2,228
463
Hello,

Have you considered enabling the Greylisting feature in "WHM >> Email >> Greylisting"? Per it's description:

When enabled, the mail server will temporarily reject any email from a sender the server does not recognize. If the email is legitimate, the originating server will try again after a delay. After sufficient time has elapsed, the server will accept the email.
It's documented at:

Greylisting - Documentation - cPanel Documentation

Thank you.
 
  • Like
Reactions: psytanium

psytanium

Well-Known Member
Jun 6, 2014
282
15
68
Lebanon
cPanel Access Level
Root Administrator
Thanks. I'm experimenting this feature. Not so promising as most forged emails are recognized by the mail client and server. I think there no solution for spear phishing.