[mdaemon-l] Attachment masuk Quarantine
On 22/08/20 07.45, EVI RUSNADI wrote: > Setelah saya upgrade ke MD 20.0.1 banyak attachment file yang masuk > quarantine. > From : a...@cilegonfab.co.id > To: yoshida0...@ihi-g.com > Subject : RE: Progress of Top Girder Column > Date : Fri, 21 Aug 2020 16:58:16 +0700 > Message-ID: <010001d677a1$974ca170$c5e5e450$@cilegonfab.co.id> > -- > AttachmentVirus name Action taken > -- > FABRICATION TOP COLUMN 11903 21-08-20.xlsx; NOT_SCANNED Message > Quarantined Periksa ke antivirus log. -- syafril --- Syafril Hermansyah MDaemon-L Moderators, MDaemon 20.0.1-64 Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. Learn from yesterday, live for today, hope for tomorrow. The important thing is not to stop questioning. --- Albert Einstein -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 20.0.1, SecurityGateway 7.0
[mdaemon-l] Attachment masuk Quarantine
Dear Pak Syafril, Setelah saya upgrade ke MD 20.0.1 banyak attachment file yang masuk quarantine. Dan saya harus release satu persatu. Padahal sebelumnya di MD 19.5.5 semua berjalan dengan baik, Mohon suggestnya agar normal kembali. Berikut sampel email dari postmaster : SecurityPlus for MDaemon has detected virus infected message attachments >From : a...@cilegonfab.co.id To: yoshida0...@ihi-g.com Subject : RE: Progress of Top Girder Column Date : Fri, 21 Aug 2020 16:58:16 +0700 Message-ID: <010001d677a1$974ca170$c5e5e450$@cilegonfab.co.id> -- AttachmentVirus name Action taken -- FABRICATION TOP COLUMN 11903 21-08-20.xlsx; NOT_SCANNED Message Quarantined Regards, RUSNADI MIS Department | PT. Cilegon Fabricators Jl. Raya Bojonegara - Salira, Argawana Puloampel - Serang, Banten 42454 Indonesia Email : evirusn...@cilegonfab.co.id M : +62-87774212633 O : +62-254-5750068 (108) - -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 20.0.1, SecurityGateway 7.0
[mdaemon-l] Serangan Spam Email
On 21/08/20 16.54, Heryanto wrote: > Mau bertanya per hari ini ada serangan tiba tiba spam email di domain > kami @dima.co.id dan aneh nya beberapa serang email spam ini menggunakan > email email yg sudah lama berikut kami lampirkan beberapa log nya. > Received: from out7.antispamcloud.com [(94.75.244.176)] by mail.dima.co.id > with ESMTPS id md50014577729.msg; > Received: from mx33.antispamcloud.com [(188.138.125.29)] by mail.dima.co.id > with ESMTPS id md50014577740.msg; > Received: from mx46.antispamcloud.com [(69.64.57.61)] by mail.dima.co.id with > ESMTPS id md50014577858.msg; Semua spam itu masuk lewat SMTPrelay (relayhost) antispamcloud.com, sehingga hampir semua fungsi antispam di MDaemon tidak berfungsi. > Kira kira bagaimana pencegahan atas serangan spam email ini. Ubah DNS MX record domain dima.co.id agar mail.dima.co.id sebagai primary MX agar mail dari internet masuk langsung ke MDaemon melalui smtp service dan semua antispam MDaemon berfungsi penuh. Pilihan lain, minta ke smtprelay hoster memblock semua spam mail yang ditujukan ke domain dima.co.id. -- syafril --- Syafril Hermansyah MDaemon-L Moderators, MDaemon 20.0.1-64 Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. Study the past if you would define the future. --- Confucius -- --[mdaemon-l]-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir: MDaemon 20.0.1, SecurityGateway 7.0
[mdaemon-l] Serangan Spam Email
Dear Pak Syafril , Selamat Sore Pak. Mau bertanya per hari ini ada serangan tiba tiba spam email di domain kami @dima.co.id dan aneh nya beberapa serang email spam ini menggunakan email email yg sudah lama berikut kami lampirkan beberapa log nya. Kira kira bagaimana pencegahan atas serangan spam email ini. Mohon pencerahan. Versi Mdaemon v19.0.3 Received: from cf3.netcore.co.in (cf3.netcore.co.in [202.162.229.197]) by smtpout3.netcore.co.in (Postfix) with ESMTP id 09A01DA8B5C for ; Wed, 19 Aug 2020 17:35:31 +0530 (IST) Received: from 47smtpout.netcore.co.in ([202.162.241.47] helo=smtpout3.netcore.co.in) by mx141.antispamcloud.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.92) (envelope-from ) id 1k8MqT-000Urd-IV for benya...@dima.co.id; Wed, 19 Aug 2020 14:05:35 +0200 Received: from [105.247.151.154] (unknown [105.247.151.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) (Authenticated sender: smsi...@sargam.in) by smtpin5.netcore.co.in (Postfix) with ESMTPSA id 14367A8963 for ; Wed, 19 Aug 2020 17:34:34 +0530 (IST) Received: from smtpin5.netcore.co.in (unknown [192.168.2.96]) by cf3.netcore.co.in (Postfix) with ESMTP id 1DC611200EC for ; Wed, 19 Aug 2020 17:35:30 +0530 (IST) Received: from out7.antispamcloud.com [(94.75.244.176)] by mail.dima.co.id with ESMTPS id md50014577729.msg; Wed, 19 Aug 2020 19:05:39 +0700 Return-Path: From: To: "RBM Region East - Benyamin" Subject: ME Bulan Juni dan Juli 2020, Outstanding RFMF F20 dan Belum ada RFMF Date: Wed, 19 Aug 2020 19:04:37 +0700 Message-ID: <20200819120530.1dc61120...@cf3.netcore.co.in> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 14.0 Thread-Index: AQJssHnM7FzLvBxNUxCjATFbIJAS0g== Received: from mailo-b2 (10.95.60.7) by mailo-proxy2 (Axigen) with ESMTPA id 0FEADD; Wed, 19 Aug 2020 15:09:47 +0300 Received: from mailo-proxy2 (smtp.online.lv [81.198.164.193]) by fortimail.online.lv with ESMTP id 07JC9lTc020051-07JC9lTe020051 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Wed, 19 Aug 2020 15:09:47 +0300 Received: from [200.150.114.12] (200.150.114.12) by mailo-proxy2 (Axigen) with ESMTPA id 12E369; Wed, 19 Aug 2020 15:09:46 +0300 Received: from mailo-proxy2 (10.95.60.4) by mailo-b2 (Axigen) with ESMTPA id 1096F6; Wed, 19 Aug 2020 15:09:47 +0300 Received: from fortimail.online.lv ([81.198.164.220]) by mx33.antispamcloud.com with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.92) (envelope-from ) id 1k8Mua-0001pN-Ou for herman.b...@dima.co.id; Wed, 19 Aug 2020 14:09:54 +0200 Received: from mx33.antispamcloud.com [(188.138.125.29)] by mail.dima.co.id with ESMTPS id md50014577740.msg; Wed, 19 Aug 2020 19:09:59 +0700 From: To: Subject: Re: Outstanding Surabaya Semarang 18 Juni 2020 Date: Wed, 19 Aug 2020 19:09:45 +0700 Message-ID: <1597838986559871710@mailo-proxy2> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 14.0 Thread-Index: AQJ3qMYf1o8V8sipLnragcvQqmXToQ== Received: from cm16.websitewelcome.com (cm16.websitewelcome.com [100.42.49.19]) by gateway34.websitewelcome.com (Postfix) with ESMTP id 61E0C15AC02 for ; Wed, 19 Aug 2020 07:56:24 -0500 (CDT) Received: from gateway34.websitewelcome.com ([192.185.148.231]) by mx46.antispamcloud.com with esmtps (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.92) (envelope-from ) id 1k8Ndh-0002h1-GG for herman.b...@dima.co.id; Wed, 19 Aug 2020 14:56:38 +0200 Received: from [187.108.44.106] (port=57100) by gator3301.hostgator.com with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from ) id 1k8Ndf-0045Nb-8c for herman.b...@dima.co.id; Wed, 19 Aug 2020 07:56:23 -0500 Received: from gator3301.hostgator.com ([192.254.250.165]) by cmsmtp with SMTP id 8Ndfkz5NDCjCV8NdgkojjV; Wed, 19 Aug 2020 07:56:24 -0500 Received: from mx46.antispamcloud.com [(69.64.57.61)] by mail.dima.co.id with ESMTPS id md50014577858.msg; Wed, 19 Aug 2020 19:56:44 +0700 From: To: "ABM Dima Semarang - Herman Boen" Subject: MEMO 09 : Penutupan Kantor Sudirman & Perubahan Jam Kerja Sementara Date: Wed, 19 Aug 2020 19:56:23 +0700
