By: zetalliance
If you find Spoof Alert Zimlet useful and want to support its continued development, you can make donations via: - PayPal: info@barrydegraaff.tk - Bank transfer: IBAN NL55ABNA0623226413 ; BIC ABNANL2A
This Zimlet can be used to help users to identify spoofing and thus offer protection against it. While some parts of this Zimlet work automatic, it is recommended you deploy it with a knowledgeable helpdesk to back it up.
This zimlet checks the result from Spam Assassin and alerts the user when certain tags are found. In addition it enforces the zimbraPrefShortEmailAddress setting to be FALSE as that allows the user to see the used email FROM address. The Zimlet also checks for suspicious characters in headers, like the NULL character etc.
I deployed the Zimlet in an organisation with 700 users, and pointed the alertmail
property to the helpdesk ticket system, after a few weeks of increased tickets and configuring the ignorelistReplyTo
and ignorelistReturnPath
the number of false positives dropped, and now the alert is really valuable to the user.
This will help users to identify spoofed emails, this setting is also enforced per user when you enable this zimlet. For the default COS (remeber to set it for all your COS'es): zmprov mc default zimbraPrefShortEmailAddress FALSE
You can have your users automatically submit suspicious mail to your helpdesk staff by configuring the alertmail
property in config_template.xml.
You can set trusted reply-to's by adding a semi-colon separated list in ignorelistReplyTo
You can set trusted reply-to's by adding a semi-colon separated list in ignorelistReturnPath
Rating | ( 1 ratings ) |
Downloads | 2004 |
Latest Version | 0.7 |
Categories | |
Compatibility | ZCS 8.7.x , ZCS 8.8.x |
License | No License Specified |
Created | on 3/30/15 |
Updated | on 8/6/18 |
By: ajcody on on 12/23/16 for version 0.3