The configuration highlight of ScrolloutF1 is here
1.Secure-Levels
This page is configured with various filters and ratings, 1-3 is strict, 4-6 is moderate, and 7-10 is loose.
1.1 Auto Defense Automatic defense, disable illegal access and over-limit access to IP for a period of time. It is recommended to build a new system 7, and slowly reduce to about 5 after a period of use.
1.2 Average reputation The average reputation, based on the sender's address, IP, domain, fingerprint and other comprehensive information over a period of time, evaluates the sender's reputation score.
1.3 Body filter based on Pyzor2 plugin score.
1.4 Connection filter Connection filter, based on RBL and DNSBL to filter spammers. The RBL in the figure below is the RBL that comes with ScrolloutF1. This RBL address is virtual and calls the service of ScrolloutF1. Other third parties can also be used here. RBL services, such as CBL, ZEN, etc. But generally free RBL will have a daily query limit, such as ZEN is 30W times per day.
1.5 Geographic filter Geographic filter, according to the sender IP, server IP, URL IP, etc. to query the regional score. This does not feel very practical, after all, the network is globally integrated. We do not know which country our customers will come from Send an email, maybe there are new customers.
1.6 Hearder add attachments filter Attachment filter, based on mail attachment filtering, such as executable file .exe, document, multimedia, multi-extension or hidden extension attachment, the specific restriction list can be viewed and modified in the SpamAssassin configuration file.
1.7 Hostname filter Hostname filter, according to the sending hostname to classify or block, such as wireless, dynamic IP, etc., to prevent forgery of domain names.
1.8 IPSec encryption IPSec encryption, strong encryption in dark green area: AES256, SHA512 and DH modp8192, medium encryption in light green area: AES256, SHA384 and DH modp3072, weak encryption in red area: AES128, SHA256 and DH modp2048.
1.9 Picture filter The picture filter uses OCR technology to detect and score the content of the picture and the size and link of the picture.
1.10 Rate limits in inbound connection limit, in a period of time, the number of SMTP connections is limited. When level <=3, new customer mail cannot be entered due to the graylist mechanism.
1.11 Rate limits out Outbound connection limit, limit the maximum number sent to the same domain, level value*10
1.12 Spam trap score Spam score, Spamassassin scores according to Bayesian learning.
1.13 URL filter URL filter, which scores URL links in emails, such as phishing URLs, unsubscribe or external content, etc.
1.14 Web cache Web cache, retain the cache time, 1 is 1 day, 7 is 7 days, 8 or more long-term retention.
The above level configuration can be configured according to my screenshots, and will be adjusted slowly in use later.
2.Secure-Senders
This page is the black and white list
There are always some customers who build a mail server and do not do the reverse solution. SPF and DKIM or the mail server enters the RBL, which causes the mail to be rejected or enter the quarantine mailbox, so it is necessary to set up a whitelist here. There are four formats for the whitelist.
[email protected] single address
@domain.com specifies all email addresses of the domain name
.domain.com This domain name and all subdomain email addresses such as [email protected] [email protected]
domain.com All email addresses ending with domain.com
3.Secure-Countries
There are three categories of countries and regions, business area, overseas area, and non-business area. Here I set all of them as business areas. After all, I don't know where my customers may send me emails.
4.Secure-Certificate
CA certificate settings, use a third-party certificate or a self-signed certificate.
5.Secure-Password
This is for changing the password.
