Pak saya terima email scam yg seolah2 dari domain saya dari
[email protected] untuk [email protected]
Saya cek di Log MD tidak ada yg mencurigakan dan lolos oleh MD /
Security Plus
Berikut ini Sourcenya :
X-Orig-To: [email protected]
X-Originating-Ip: [23.235.223.127]
Authentication-Results: smtp9.gate.iad3b.rsapps.net; iprev=pass
policy.iprev="23.235.223.127"; spf=neutral
smtp.mailfrom="[email protected]" smtp.helo="se3q-lax1.servconfig.com";
dkim=none (message not signed) header.d=none; dmarc=none (p=nil;
dis=none) header.from=pttdp.com
X-Suspicious-Flag: NO
X-Classification-ID: 4c38cf4e-5a34-11eb-96dd-525400f4d366-1-1
Received: from [23.235.223.127] ([23.235.223.127:45713]
helo=se3q-lax1.servconfig.com)
by smtp9.gate.iad3b.rsapps.net (envelope-from <[email protected]>)
(ecelerity 4.2.38.62370 r(:)) with ESMTPS
(cipher=DHE-RSA-AES256-GCM-SHA384)
id 8D/C1-30358-FDE96006; Tue, 19 Jan 2021 03:57:03 -0500
Received: from res189.servconfig.com ([192.145.239.35])
by se3-lax1.servconfig.com with esmtps (TLSv1.2:AES128-GCM-SHA256:128)
(Exim 4.92)
(envelope-from <[email protected]>)
id 1l1mot-000EM8-EK
for [email protected]; Tue, 19 Jan 2021 03:57:02 -0500
Received: from 63-92-250-186.net.odhserver.com ([186.250.92.63]:30708
helo=hmm21.com)
by res189.servconfig.com with esmtpsa (TLS1.2) tls
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(Exim 4.93)
(envelope-from <[email protected]>)
id 1l1mos-00GWI9-Ct
for [email protected]; Tue, 19 Jan 2021 00:56:58 -0800
Bagaimana caranya agar email spt ini tidak lolos ke recipient kami ?
Rgds,
--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke [email protected]
Henti Langgan: Kirim mail ke [email protected]
Versi terakhir: MDaemon 20.0.3, SecurityGateway 7.0.2
