Dear Pak Syafril,
Apakah ada trik khusus untuk mencegah 2 email spam terlampir pak ?
karena bisa lolos dari mdaemon.
Terima kasih.
Log 1 :
Sat 2018-12-01 20:16:00.022: 03: --> 250 mail.persada.id Hello
4edental.com [173.198.27.3], pleased to meet you
Sat 2018-12-01 20:16:00.240: 02: <-- MAIL FROM:<supp...@4edental.com>
Sat 2018-12-01 20:16:00.243: 05: Performing PTR lookup
(3.27.198.173.IN-ADDR.ARPA)
Sat 2018-12-01 20:16:00.514: 05: * D=3.27.198.173.IN-ADDR.ARPA TTL=(60)
PTR=[rrcs-173-198-27-3.west.biz.rr.com]
Sat 2018-12-01 20:16:00.772: 05: * D=rrcs-173-198-27-3.west.biz.rr.com
TTL=(60) A=[173.198.27.3]
Sat 2018-12-01 20:16:00.772: 05: ---- End PTR results
Sat 2018-12-01 20:16:00.775: 05: Performing IP lookup (4edental.com)
Sat 2018-12-01 20:16:00.777: 05: * D=4edental.com TTL=(29)
A=[192.169.188.49]
Sat 2018-12-01 20:16:00.777: 05: ---- End IP lookup results
Sat 2018-12-01 20:16:00.781: 05: Performing IP lookup (4edental.com)
Sat 2018-12-01 20:16:00.783: 05: * D=4edental.com TTL=(29)
A=[192.169.188.49]
Sat 2018-12-01 20:16:00.785: 05: * P=000 S=000 D=4edental.com TTL=(59)
MX=[mail.4edental.com] {173.198.27.3}
Sat 2018-12-01 20:16:00.785: 05: ---- End IP lookup results
Sat 2018-12-01 20:16:00.786: 09: Performing SPF lookup (4edental.com /
173.198.27.3)
Sat 2018-12-01 20:16:00.786: 09: * Policy (cache): v=spf1 +a +mx
include:marketheroSPF.smtp.com ?all
Sat 2018-12-01 20:16:00.788: 09: * Evaluating +a: no match
Sat 2018-12-01 20:16:00.793: 09: * Evaluating +mx: match
Sat 2018-12-01 20:16:00.793: 09: * Result: pass
Sat 2018-12-01 20:16:00.793: 09: ---- End SPF results
Sat 2018-12-01 20:16:00.793: 03: --> 250 2.1.0 Sender OK
Sat 2018-12-01 20:16:01.001: 02: <-- RCPT TO:<bambang.praseti...@persada.id>
Sat 2018-12-01 20:16:01.047: 05: Performing DNS-BL lookup (173.198.27.3
- connecting IP)
Sat 2018-12-01 20:16:01.064: 05: * zen.spamhaus.org - passed
Sat 2018-12-01 20:16:01.301: 05: * bl.spamcop.net - passed
Sat 2018-12-01 20:16:01.301: 05: ---- End DNS-BL results
Sat 2018-12-01 20:16:01.302: 03: --> 250 2.1.5 Recipient OK
Sat 2018-12-01 20:16:01.518: 02: <-- DATA
Sat 2018-12-01 20:16:01.519: 01: Creating temp file (SMTP):
c:\mdaemon\queues\temp\md50000051645.tmp
Sat 2018-12-01 20:16:01.519: 03: --> 354 Enter mail, end with <CRLF>.<CRLF>
Sat 2018-12-01 20:16:02.371: 01: Message size: 31331 bytesSat 2018-12-01
20:16:02.373: 10: Performing DKIM lookup
Sat 2018-12-01 20:16:02.373: 10: * File:
c:\mdaemon\queues\temp\md50000051645.tmp
Sat 2018-12-01 20:16:02.373: 10: * Message-ID:
<3560106752968319675.c23ca084ce13a...@persada.id>
Sat 2018-12-01 20:16:02.373: 10: * Result: neutral
Sat 2018-12-01 20:16:02.373: 10: ---- End DKIM results
Sat 2018-12-01 20:16:02.377: 19: Performing DMARC processing
Sat 2018-12-01 20:16:02.377: 19: * File:
c:\mdaemon\queues\temp\md50000051645.tmp
Sat 2018-12-01 20:16:02.377: 19: * Message-ID:
<3560106752968319675.c23ca084ce13a...@persada.id>
Sat 2018-12-01 20:16:02.377: 19: * Author domain: 4edental.com
Sat 2018-12-01 20:16:02.377: 19: * Organizational domain: 4edental.com
Sat 2018-12-01 20:16:02.377: 19: * Query domain: _dmarc.4edental.com
Sat 2018-12-01 20:16:02.395: 19: * No DMARC policy record found
Sat 2018-12-01 20:16:02.395: 19: * Action taken: none
Sat 2018-12-01 20:16:02.395: 19: * Result: none
Sat 2018-12-01 20:16:02.395: 19: ---- End DMARC results
Sat 2018-12-01 20:16:02.397: 06: Passing message through AntiVirus
(Size: 31331)...
Sat 2018-12-01 20:16:02.472: 06: * Message is clean (no viruses found)
Sat 2018-12-01 20:16:02.472: 06: ---- End AntiVirus results
Sat 2018-12-01 20:16:02.472: 11: Passing message through ClamAV Plugin
(c:\mdaemon\queues\temp\md50000051645.tmp)...
Sat 2018-12-01 20:16:02.472: 11: * Message-ID:
<3560106752968319675.c23ca084ce13a...@persada.id>
Sat 2018-12-01 20:16:02.549: 11: * Virus result: 0 - clean
Sat 2018-12-01 20:16:02.700: 11: Passing message through Outbreak
Protection...
Sat 2018-12-01 20:16:02.700: 11: * Message-ID:
<3560106752968319675.c23ca084ce13a...@persada.id>
Sat 2018-12-01 20:16:02.700: 11: * Reference-ID:
str=0001.0A150207.5C028993.0015,ss=3,re=0.000,recu=0.000,reip=0.000,vtr=str,vl=0,pt=F_42288174,cl=4,cld=1,fgs=0
Sat 2018-12-01 20:16:02.700: 11: * Virus result: 0 - Clean
Sat 2018-12-01 20:16:02.700: 11: * Spam result: 4 - Spam (confirmed)
Sat 2018-12-01 20:16:02.700: 11: * IWF result: 0 - Clean
Sat 2018-12-01 20:16:02.701: 11: ---- End Outbreak Protection results
Sat 2018-12-01 20:16:02.701: 07: Passing message through Spam Filter
(Size: 31352)...
Sat 2018-12-01 20:16:03.342: 07: * 2.5 MDAEMON_OP_SPAM_HIGH MDaemon:
spam/phish
Sat 2018-12-01 20:16:03.342: 07: * 0.0 HTML_MESSAGE BODY: HTML included
in message
Sat 2018-12-01 20:16:03.342: 07: * 1.1 MIME_HTML_ONLY BODY: Message
only has text/html MIME parts
Sat 2018-12-01 20:16:03.342: 07: * 0.7 HTML_IMAGE_ONLY_20 BODY: HTML:
images with 1600-2000 bytes of words
Sat 2018-12-01 20:16:03.342: 07: * 0.4 RDNS_DYNAMIC Delivered to
internal network by host with
Sat 2018-12-01 20:16:03.342: 07: * dynamic-looking rDNS
Sat 2018-12-01 20:16:03.342: 07: ---- End SpamAssassin results
Sat 2018-12-01 20:16:03.342: 07: Spam Filter score/req: 4.70/12.0
Sat 2018-12-01 20:16:03.559: 01: Message creation successful:
c:\mdaemon\queues\inbound\md50003087583.msg
Sat 2018-12-01 20:16:03.559: 03: --> 250 2.6.0 Ok, message saved
<Message-ID: <3560106752968319675.c23ca084ce13a...@persada.id>>
Sat 2018-12-01 20:16:03.563: 02: <-- QUIT
Sat 2018-12-01 20:16:03.563: 03: --> 221 2.0.0 See ya in cyberspace
Sat 2018-12-01 20:16:03.563: 01: SMTP session successful (Bytes in/out:
31440/361)
Sat 2018-12-01 20:16:03.564: 01: ----------
Log 2 :
Fri 2018-11-30 18:29:10.179: 02: <-- MAIL FROM:<he...@morr.gov.af>
Fri 2018-11-30 18:29:10.182: 05: Performing PTR lookup
(11.247.23.103.IN-ADDR.ARPA)
Fri 2018-11-30 18:29:10.440: 04: * DNS server reports domain name unknown
Fri 2018-11-30 18:29:10.440: 05: * No PTR records found
Fri 2018-11-30 18:29:10.440: 05: ---- End PTR results
Fri 2018-11-30 18:29:10.443: 05: Performing IP lookup (andc.gov.af)
Fri 2018-11-30 18:29:10.856: 05: * D=andc.gov.af TTL=(1440)
A=[103.23.247.25]
Fri 2018-11-30 18:29:10.856: 05: ---- End IP lookup results
Fri 2018-11-30 18:29:10.860: 05: Performing IP lookup (morr.gov.af)
Fri 2018-11-30 18:29:12.122: 05: * D=morr.gov.af TTL=(1440)
A=[103.23.247.203]
Fri 2018-11-30 18:29:12.524: 05: * P=010 S=000 D=morr.gov.af TTL=(1440)
MX=[mail.morr.gov.af]
Fri 2018-11-30 18:29:12.931: 05: * D=mail.morr.gov.af TTL=(1440)
A=[103.23.247.11]
Fri 2018-11-30 18:29:12.931: 05: ---- End IP lookup results
Fri 2018-11-30 18:29:12.932: 09: Performing SPF lookup (morr.gov.af /
103.23.247.11)
Fri 2018-11-30 18:29:13.333: 09: * Policy: v=spf1 ip4:103.23.247.11 -all
Fri 2018-11-30 18:29:13.333: 09: * Evaluating ip4:103.23.247.11: match
Fri 2018-11-30 18:29:13.333: 09: * Result: pass
Fri 2018-11-30 18:29:13.333: 09: ---- End SPF results
Fri 2018-11-30 18:29:13.333: 03: --> 250 2.1.0 Sender OK
Fri 2018-11-30 18:29:13.742: 02: <-- RCPT TO:<bambang.praseti...@persada.id>
Fri 2018-11-30 18:29:13.746: 05: Performing DNS-BL lookup (103.23.247.11
- connecting IP)
Fri 2018-11-30 18:29:13.763: 05: * zen.spamhaus.org - passed
Fri 2018-11-30 18:29:13.966: 05: * bl.spamcop.net - failed - 127.0.0.2
Fri 2018-11-30 18:29:13.966: 05: ---- End DNS-BL results
Fri 2018-11-30 18:29:13.968: 03: --> 250 2.1.5 Recipient OK
Fri 2018-11-30 18:29:14.385: 02: <-- DATA
Fri 2018-11-30 18:29:14.386: 01: Creating temp file (SMTP):
c:\mdaemon\queues\temp\md50000039727.tmp
Fri 2018-11-30 18:29:14.386: 03: --> 354 Enter mail, end with <CRLF>.<CRLF>
Fri 2018-11-30 18:29:31.652: 01: Message size: 205867 bytes
Fri 2018-11-30 18:29:31.656: 10: Performing DKIM lookup
Fri 2018-11-30 18:29:31.656: 10: * File:
c:\mdaemon\queues\temp\md50000039727.tmp
Fri 2018-11-30 18:29:31.656: 10: * Message-ID:
<34781334882341316762.a56f1badb263c...@persada.id>
Fri 2018-11-30 18:29:31.657: 10: * Result: neutral
Fri 2018-11-30 18:29:31.657: 10: ---- End DKIM results
Fri 2018-11-30 18:29:31.661: 19: Performing DMARC processing
Fri 2018-11-30 18:29:31.661: 19: * File:
c:\mdaemon\queues\temp\md50000039727.tmp
Fri 2018-11-30 18:29:31.661: 19: * Message-ID:
<34781334882341316762.a56f1badb263c...@persada.id>
Fri 2018-11-30 18:29:31.661: 19: * Author domain: morr.gov.af
Fri 2018-11-30 18:29:31.661: 19: * Organizational domain: morr.gov.af
Fri 2018-11-30 18:29:31.661: 19: * Query domain: _dmarc.morr.gov.af
Fri 2018-11-30 18:29:32.045: 19: * Policy record: v=DMARC1; p=reject;
sp=none; rf=afrf; pct=100; ri=86400
Fri 2018-11-30 18:29:32.045: 19: * Checking authentication mechanisms
for DMARC alignment
Fri 2018-11-30 18:29:32.045: 19: * SPF: domain "morr.gov.af" passed
SPF check; and domain is DMARC aligned
Fri 2018-11-30 18:29:32.045: 19: * DKIM: no DKIM signatures found
Fri 2018-11-30 18:29:32.045: 19: * Result: pass
Fri 2018-11-30 18:29:32.045: 19: ---- End DMARC results
Fri 2018-11-30 18:29:32.047: 06: Passing message through AntiVirus
(Size: 205867)...
Fri 2018-11-30 18:29:32.088: 06: * Message is clean (no viruses found)
Fri 2018-11-30 18:29:32.088: 06: ---- End AntiVirus results
Fri 2018-11-30 18:29:32.088: 11: Passing message through ClamAV Plugin
(c:\mdaemon\queues\temp\md50000039727.tmp)...
Fri 2018-11-30 18:29:32.088: 11: * Message-ID:
<34781334882341316762.a56f1badb263c...@persada.id>
Fri 2018-11-30 18:29:32.630: 11: * Virus result: 0 - clean
Fri 2018-11-30 18:29:32.630: 07: Spam filter scan skipped; message size
(205867) exceeds spam filter configured max size of (204800)
Fri 2018-11-30 18:29:33.031: 01: Message creation successful:
c:\mdaemon\queues\inbound\md50003083040.msg
Fri 2018-11-30 18:29:33.031: 03: --> 250 2.6.0 Ok, message saved
<Message-ID: <34781334882341316762.a56f1badb263c...@persada.id>>
Fri 2018-11-30 18:29:33.035: 02: <-- QUIT
--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 18.5.1, SG 5.5.0
