Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Does CallerID do anything? (Turned on, but no entries in log and Kerio details screen does nothing)
  •  
MarkK

Messages: 454
Karma: 46
Send a private message to this user
Is anyone using the CallerID spam feature?

I have turned it on to report to the Security log only to see what it would do, but after one day there are no entries in the log for it.

Also, clicking on the link Check My Email Policy DNS Records that takes you to a page on Kerio's web site, clicking the Go button returns nothing regardless of what you enter in the "Search this domain for Caller ID information" box.

Considering that Caller ID was a 2004 idea from Microsoft, and 9 years later "Kerio Connect is the first commercial mailserver with CallerID technology on the market", I don't think it works.
  •  
Petr Dobry (Kerio)

Messages: 782
Karma: 61
Send a private message to this user
The CallerID checking tool on our website was broken, it works properly now.

CallerID is very effective way how to block those spams which fake your email address as a sender. Unfortunately not many domains use it.

Petr Dobry
Product Development Manager | Kerio
  •  
MarkK

Messages: 454
Karma: 46
Send a private message to this user
Thanks Petr.

Since very few domains use it, is that why I don't see any entries in my Security log even though that option is turned on in my KC server?
  •  
MarkK

Messages: 454
Karma: 46
Send a private message to this user
Still trying to see if CallerID does anything. So far, in my case, it does nothing. After a few days there is still no entries in my Security log from it. Trying checking / unchecking some of its options to see if it does something.

Trying to figure out how to get spams forged as being from me to me to be marked as spam, when the Receive header clearly shows it is from elsewhere.
  •  
TorW

Messages: 769
Karma: 9
Send a private message to this user
The "Caller ID" functionality does nothing unless the sending server has Sender ID records published. I assume you have Sender ID records defined for all the domains under your control, so that mails spoofed from your domain(s) are blocked elsewhere?

The internet is a best effort collaboration. It's your turn.

http://en.wikipedia.org/wiki/Sender_ID
  •  
freakinvibe

Messages: 1542
Karma: 62
Send a private message to this user
I had switched on Sender ID a while ago, it did not catch anything.

I now use SPF, which does much better for me. So, for example, mails that are pretending to come from Hotmail, but are not really from Hotmail, are blocked.

Some big mailers publish SPF records in DNS, so it can help reduce Spam. You should see an entry in the Security log like:

[14/Mar/2013 01:38:50] SPF check failed: The IP address '77.72.97.141' is not in permitted set for sender 'info<_at_>cenbank.org' (FAIL)

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
MarkK

Messages: 454
Karma: 46
Send a private message to this user
I have had SPF turned on, but I didn't have the corresponding SPF record published. I have fixed that now on my DNS out on the www. I'll see if I get any hits or help from SPF and CallerID since I have turned on my debug log for all of the spam processing activities. That should be a lot to read.
  •  
Petr Dobry (Kerio)

Messages: 782
Karma: 61
Send a private message to this user
MarkK wrote on Thu, 14 March 2013 00:49
Trying to figure out how to get spams forged as being from me to me to be marked as spam, when the Receive header clearly shows it is from elsewhere.


That's exactly what CallerID and SPF do. If you configure DNS records properly, it will protect your mailserver (and any other mailserver using those technologies) from emails being send with your forged domain.

In case of CallerID, you will see in Security log:

[14/Mar/2013 19:38:52] Caller-ID check failed: IP address 190.179.98.148 is not in permitted set for sender 'hrefs<_at_>kerio.com'


It's also important to set a policy to block emails, not just increase a spam score.

Petr Dobry
Product Development Manager | Kerio
  •  
freakinvibe

Messages: 1542
Karma: 62
Send a private message to this user
MarkK wrote on Thu, 14 March 2013 00:49
Trying to figure out how to get spams forged as being from me to me to be marked as spam, when the Receive header clearly shows it is from elsewhere.


You can also activate the follwoing setting:

"Require authentication even when sender is from a local domain"

in the SMTP server security settings. This is a new feature with KC 8.0 (did not exist in 7.x).

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
MarkK

Messages: 454
Karma: 46
Send a private message to this user
Just wanted to post back. I have properly setup my DNS records out on the internet for both SPF and CallerID. Since those have been properly setup, a number of my-domain-spoofed emails have been blocked.

I was told that for the SPF record, it should be set to use hard-fail, which is ending the record using -all, instead of the soft-fail of ~all.

The kb article for this is at
http://kb.kerio.com/product/kerio-connect/antispam/how-do-i- create-an-spf-or-caller-id-record-248.html
Previous Topic: Accessing certain public folders
Next Topic: Distribution list based on the category
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sun Oct 22 13:50:38 CEST 2017

Total time taken to generate the page: 0.00494 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.