I would like to turn the phishing fraud detection off on one domain (the "MailScanner has detected a possible fraud attempt from ..." message). How can I do this? Print

  • 1

There are two ways to do this. You can either create a ruleset for the phishing scanning and turn it off for a single domain, or you can add specific sites to the Phishing Safe Sites File so they do not get highlighted by the phishing scanning.

A. To turn off phishing for a single domain do the following:

1. First create a ruleset file in /usr/mailscanner/etc/rules. You might call it "phishing.rules" for instance. In that file put the following lines (or something like them).

From: *@domain.com no
FromOrTo: default yes

The example above would set it to NOT scan for phishing in emails FROM the domain listed. If you want to turn off the phishing scan for emails sent both to and from the domain, change it to FromOrTo:.

2. In WHM > Add-ons > MailScanner > MailScanner Configuration, search for "Find Phishing Fraud". Enter the name of the file you created in step one here, scroll down and click Change.

B. To add sites to the safe sites file, edit /usr/mailscanner/etc/phishing.safe.sites.conf and add the full hostname or IP address of the link destination to this file.


Was this answer helpful?
Back