Jump to content

***SPAM in WHMCS*** Want to get rid of it?


dkent

Recommended Posts

BoxTrapper is very useful. It simply protects your inbox from spam by forcing all people not on your white list to reply to a verification email before they can send mail to you. However, this is not always ideal of your main email accounts such as sales/support due to everybody that emails in to have to verify that they are a human being. BoxTrapper is only useful for less used email accounts.

 

Spam Assissin is my favourite. With this you can set it to "auto delete" emails that are considered as SPAM and set a score rating. I use this for all email accounts. If Spam Assassin considers an email to be spam, it will add ***SPAM*** in the subject of every spam message.

 

How to stop SPAM from entering your WHMCS support ticket system:

 

You do not need to disable email piping! All you need to do is...

 

1. Login into your 'WHMCS' Admin area.

 

2. In 'Configuration' settings, click on 'Spam Control'

 

3. Click on 'Blocked Subjects' and enter ***SPAM*** in the text field (make sure you select 'Subject' option from the drop-down).

 

That's it, no more SPAM! Just make sure you have Spam Assassin switched on (from within your cPanel). Spam Assassin will automatically add the subject ***SPAM*** to all email considered as spam, and WHMCS will BLOCK all emails that contain the email subjects ***SPAM*** from entering the piping system.

 

This is a VERY neat and easy trick, and it works well. Any questions, feel free to comment :)

 

P.S: Anyone tried ClientExec software? - What a load of rubbish!

 

WHMCS FOREVER!

Link to comment
Share on other sites

  • 1 month later...
How does this work if your using piping to /pipe/pipe.php

you cant Enable BoxTrapper on a forwarder

 

You shouldn't use BoxTrapper on your sales or support addresses, as it just adds more unneeded work for the client. Just make sure SpamAssassin is on and set it up as per the OP post.

Link to comment
Share on other sites

That's right, just use Spam Assassin, and forward all emails to your WHMCS piping system. Any emails you or your sales/support dept receive will be BLOCKED from entering the piping system (once you have added ***SPAM*** to your blocked subject in WHMCS Spam Control of course).

 

Before I found out this neat trick (and probably the only true way of tackling WHMCS spam) I was receiving tons of unsolicited email each day. Now I don't get a single spam message at all.

Link to comment
Share on other sites

That's right, just use Spam Assassin, and forward all emails to your WHMCS piping system. Any emails you or your sales/support dept receive will be BLOCKED from entering the piping system (once you have added ***SPAM*** to your blocked subject in WHMCS Spam Control of course).

 

Before I found out this neat trick (and probably the only true way of tackling WHMCS spam) I was receiving tons of unsolicited email each day. Now I don't get a single spam message at all.

 

I have also found this to be a useful way to block spam, but I recently notice that people are getting by the verification image (not email related).

Link to comment
Share on other sites

What do you set your SA Score to .. i have it at 5 and i still get support emails. Ive even tried forwarding to a GMAIL account which then forwards to tickets which is then piped and they still get through

 

I even added the IP to Banned IP's and they get through

 

 

A new support ticket has been opened.

Client: nejtbvqbx

Department: SECONDRING Support

Subject: sCVgzFKgsMpo

Priority: Medium

----------------------------

IP Address: 94.102.60.182

You can respond to this ticket by simply replying to this email or by logging into the administration area.

Link to comment
Share on other sites

I have also found this to be a useful way to block spam, but I recently notice that people are getting by the verification image (not email related).

 

I only use Spam Assassin, and the score rating is set at 5 like most people have it set as. I do not get any verification emails whatsoever and nor do anybody that emails any of my sales or support addresses.

 

You say that people are receiving verification emails. It sounds to me that you have BoxTrapper turned on for those email addresses. I strongly suggest that you turn this off for all emails and use Spam Assassin only. You do not receive verification emails using Spam Assassin therefore it resolves the problem that you were having.

 

Please head over to your cPanel and turn BoxTrapper off for all sales/support emails (ones you use for WHMCS email piping) and keep Spam Assassin turned on.

Link to comment
Share on other sites

  • 5 weeks later...

Would be good to see a feature where if it see's an address in it's address book to automatically accept it.

But should the email address not be in WHMCS's system, a reply email is sent (once) and asks the sender to reply typing xyzabc...

Am i making sense? :?

:S

 

P.S:

Is there a way to turn off the predefined response for an email template???

 

Under Support Messages and Bounce Message (we use to get dozens and dozens of these)

It would be nice to be able to turn this message off, as we would have no need for this. (You can only disable the language options, but not the responses......)

(:

Edited by flip
Link to comment
Share on other sites

  • 9 months later...

Hi,

I have had Config Server install cPanel Service Package

+ MailScanner on my servers and it's fantastic.

It includes all these functions ::

ConfigServer Mail Manage

ConfigServer Mail Queues

ConfigServer Explorer

ConfigServer Security&Firewall

ConfigServer MailScanner FE

It cost $125 per server but well worth the money.

 

Link here if anyone interested http://www.configserver.com/cp/cpanel.html

cheers

Link to comment
Share on other sites

These products are free

•ConfigServer Security & Firewall

•ConfigServer Explorer

•ConfigServer Mail Queues

•ConfigServer Mail Manage

 

But the Mailscanner needed to manage spam etc is not free it cost $45

Don't won't to get off topic, but I bought the $125 package because of enhanced security for my servers which included the mail scanner.

Link to comment
Share on other sites

hi;

doesn't config server have a mail application for free? I thought they had something for free, smile.

 

I've been using my method for blocking spam inside WHMCS for a long time now and not once has an email been blocked in the system from a genuine person. I make regular checks in mail (cPanel) and there are no signs of emails being classed as spam unless it actually is spam.

 

Spam Assassin works well and will continue to use it.

Link to comment
Share on other sites

These products are free

•ConfigServer Security & Firewall

•ConfigServer Explorer

•ConfigServer Mail Queues

•ConfigServer Mail Manage

 

But the Mailscanner needed to manage spam etc is not free it cost $45

Don't won't to get off topic, but I bought the $125 package because of enhanced security for my servers which included the mail scanner.

It's the MSFE (Mail Scanner Front End) that isn't free, mailscanner itself is. Personally, I installed the other apps myself as I needed them, since it takes about 5 minutes each through shell. 20 minutes work to save $80 seemed a good bet to me. ;)

 

MSFE is well worth paying for, and it comes with installation and configuration of Mailscanner that can be time consuming.

Link to comment
Share on other sites

  • 2 months later...
How does this work if your using piping to /pipe/pipe.php

you cant Enable BoxTrapper on a forwarder

 

This is an older post, but I thought I'd contribute the answer for others. If you want to enable Spam Assassin filtering on piped mail, you can do something like this. This is for a qmail MTA on a CentOS server:

 

| /usr/bin/spamassassin | php -q /var/www/vhosts/mydoman.com/httpdocs/whmcs/pipe/pipe.php

I use three support departments: info, support, and billing. I allow unregistered users to submit to info@mydomain.com. I 'POP' this address and enable aggressive Spam Assassin filtering on it. For the other addresses, I 'pipe' them using the technique above, but also require the user to be registered if not submitting from the web interface.

 

Hope this helps.

Link to comment
Share on other sites

  • 10 months later...

We use WHMCS for our company and also use the ticketing system built-in. We use Google Apps as our primary mail service, but have the WHMCS running on our Linux Server. We have all of our email going through Postini spam filter first, and we have never once received a piece of spam in our ticketing system, and have never had a legitimate email that should have gotten through get blocked. It's not only good for preventing spam in the ticketing system, but just from preventing spam in general.

 

<<snipped>>

Link to comment
Share on other sites

BoxTrapper is very useful. It simply protects your inbox from spam by forcing all people not on your white list to reply to a verification email before they can send mail to you. However, this is not always ideal of your main email accounts such as sales/support due to everybody that emails in to have to verify that they are a human being. BoxTrapper is only useful for less used email accounts.

 

Spam Assissin is my favourite. With this you can set it to "auto delete" emails that are considered as SPAM and set a score rating. I use this for all email accounts. If Spam Assassin considers an email to be spam, it will add ***SPAM*** in the subject of every spam message.

 

How to stop SPAM from entering your WHMCS support ticket system:

 

You do not need to disable email piping! All you need to do is...

 

1. Login into your 'WHMCS' Admin area.

 

2. In 'Configuration' settings, click on 'Spam Control'

 

3. Click on 'Blocked Subjects' and enter ***SPAM*** in the text field (make sure you select 'Subject' option from the drop-down).

 

That's it, no more SPAM! Just make sure you have Spam Assassin switched on (from within your cPanel). Spam Assassin will automatically add the subject ***SPAM*** to all email considered as spam, and WHMCS will BLOCK all emails that contain the email subjects ***SPAM*** from entering the piping system.

 

This is a VERY neat and easy trick, and it works well. Any questions, feel free to comment :)

 

P.S: Anyone tried ClientExec software? - What a load of rubbish!

 

WHMCS FOREVER!

 

 

 

I have spam assassin turned on. Put the word ***SPAM*** in the text field like it says and i'm still getting spam. What am I missing?

Link to comment
Share on other sites

  • 6 months later...

Just an idea.

 

In the same page, add the keyword "unsubscribe" to the blocked words tab, i found spam sometimes includes a BS link to unsubscribe, or a line telling you to send an email to XXX@somecrap.con.unno.cc

 

I also:

 

Block "no-reply" and "noreply" in the blocked email addresses.

 

Now THAT is somthing to include in the wiki^

Link to comment
Share on other sites

  • 7 months later...

I realize this is an old thread but I wanted to post my fix to get it working with Directadmin/Exim and piping to spamassassin.. I simply added the following pipe and it's working perfectly.

 

"| /usr/bin/spamc -f -e /bin/php -q /home/admin/public_html/pipe/pipe.php"

 

the -f means, if for some reason spamd is down, send mail normally to account. the -e means send to another application.

 

I'm sure this will work for other applications as well. The quotes on either end are required by directadmin.. but may work without those in your application.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated