I have the following question: Is there any possibility to blacklist not the sender domain (as it is in mailwatch sql blacklist), but the smtp that sends it?
And here is why: for the last couple of days we received a lot of phishing messages from (as it seems) the servers of one (probably) hosting company:
Code: Select all
Received: from aruba.it (hwsrv-685461.hostwindsdns.com [22.214.171.124])
I've google this for awhile, but it is getting really annoying, so I would like to blacklist (or reject) anything coming from *.hostwindsdns.com.
Can I modify the mailwatch sql blacklist behaviour, to do that? I already have quite a blacklist there...
Any help would be appreciated.