Exclude users own domain from hijack detection. Only count Authenticated messags to external domains,
I am having to whitelist users from hijack detection because they are sending many emails within their own domain. If hijack detection only counted messages to external domains, it would work more accurately.
Account hijackers use compromised accounts to send out junk to external email addresses, not local ones.
Thank you for submitting your idea, unfortunately we believe excluding messages from local accounts open an attack vector. Instead we have added the ability to configure different limits based on the connecting IP address.