These forums are locked and archived, but all topics have been migrated to the new forum. You can search for this topic on the new forum: Search for Email phishing on the new forum.
Web Hosting and Cloud Computing Control Panels
Forum guidelines read please? As for example versions.... https://www.virtualmin.com/node/53663
If using postfix you can get a lot of those things solved , by reading the POSTFIX docs themselves for more advanced use.
Also search the web with duckduckgo .
I understand green, but also you have to understand please somewhat more own work readling and searching , otherwise while playing / using Virtualmin and postfix are not for gras green users/admins and therefore i guess to dangerous to use only outof thebox configs without knowing what you have to do to make things more safe.
Not withstanding Jfro's comments regarding it not being for grass green users\admins to play with Postfix, in hardening up Postfix I found the following site very useful:
https://www.linuxbabe.com/mail-server/block-email-spam-postfix
I didn't use the Greylisting one.
TOP TIPs:
I followed most of the things suggested on that link - and spam has almost zeroed over the last month.
You also need to understand the order in which PostFix restrictions clauses are applied - some are best applied when the client (the world) makes a connection and some after.
p.s. AND learn to read & understand the Mail.log - it's your biggest asset in dealing with spam and\or issues.
do mail headers ("Received") show your mail server as originating address? receiving phish from "your email address" is not necessarily coming from your own server.. "From" header can be easily spoofed.. there's SPF, DKIM, DMARC configuration options to prevent this..