Fighting Spam with open source software

Size: px
Start display at page:

Download "Fighting Spam with open source software"

Transcription

1 Fighting Spam with open source software Charly Kühnast Municipal Datacenter for the Lower Rhine Area Internet Infrastructure

2 Introduction: KRZN and spam filtering ~ users 2 s per user per day = ~ s per day That is, 20k s that we actually want. But we get quite a lot more. Seite: 2

3 Today: spam-mails per day 7 6 Spam: millions/day H1/2007 H2/2007 H1/2008 H2/2008 Seite: 3

4 Seite: 4 One month of spam

5 Averages On average,... 99,65% of incoming SMTP traffic is unwanted. we have incoming spam-mails per minute However, peaks have reached > spams/min. Seite: 5

6 Seite: 6 An average day:

7 Seite: 7 So, where does all this spam come from?

8 Seite: 8 Spam Origins:

9 Botnets A trojan is written to infiltrate as many PCs (and servers, even) as possible The trojan's author then has full command over that machine. It is now a remotecontrolled bot (or drone) If a sizeable number of PCs have been infected, the lot of them are called a botnet Seite: 9

10 Botnets are weapons. They can... saturate network connections (ddos) infect other systems to expand the botnet be used for data and identity theft send spam. Seite: 10

11 Botnets can grow very large Several botnets with more than drones exist. They are powerful enough to cut whole countries off the internet (which happened to Estland in 2007) Seite: 11

12 For a fistful of dollars Anyone can rent (a part of) a botnet and make it send spam It's not even expensive ( 1 US$ per Bot per day, chinese botnets are cheaper) Botnets generate a lot of collateral damage, but the ROI is great Seite: 12

13 Conversion rate Scientists of the UCSD gained control over bots (1.5%) of the Storm botnet and tracked its actions for 30 days. For every mail that lead to a purchase of pharmacy products, mails were sent Seite: 13

14 Can botnets be destroyed? It happens, but not very often. In Oct '08, a spammerfriendly hosting provider (McColo) was shut down: Seite: 14

15 Part II Now you know what the problem is. Let's look at a possible solution. Seite: 15

16 Seite: 16 DNSBL header checks Address Verification Content Filter Image-spam filter Anti-Virus Spamfilters are step-by-step systems. Each step eliminates more spam. The KRZN filter uses six steps. Open source software is used for each of them. An that survives all filtering steps is considered clean and may proceed to its final destination.

17 DNSBL header checks Address Verification Content Filter Image-spam filter Anti-Virus Postfix / PolicyD-weight Postfix / PolicyD-weight Postfix (built-in feature) SpamAssassin + ext. rulesets FuzzyOCR ClamAV + ext. pattern sources Seite: 17

18 DNSBL Postfix / PolicyD-weight Seite: 18

19 DNSBL? DNSBL list host Spammer? No mail-out.sender.net my.spamfilter.net Seite: 19

20 DNSBL DNSBLs are very, very, very effective tools. However, they must be used with care. Is the DNSBL provider trustworthy? What happens when a DNSBL ceases to exist? Why not build your own DNSBL? Seite: 20

21 Build your own DNSBL Set up a few accounts without any filtering. Spread these adresses Poll the accounts once per minute and extract the sending server's IP address Add the IP to your blacklist and have it removed after 48 hours, if no further spam from this IP came in Seite: 21

22 Ask more than one DNSBL You might want to reject mails only when they are listed in more than one DNSBL. 01 ## DNSBL settings = ( 03 #HOST, BAD SCORE, GOOD SCORE, LOG NAME 04 'list.dsbl.org' 3.5, 0, 'DSBL_ORG', 05 'cbl.abuseat.org' 3.5, 0, 'ABUSEAT', 06 'sbl.hsnr.de', 3.5, 0, 'HSNR_DE', 07 ); Seite: 22

23 header checks Postfix / PolicyD-weight Seite: 23

24 Header Checks With access to the mail headers, a policy daemon can Seite: 24 - throttle connection if too many mails - come in from the same sender - come in to the same recipient - make use of - greylisting - SPF/DKIM checks - HELO checks

25 Header Checks Incidentally, I'm not making this names up... HELO randomization (same server, different HELO): Apr 24 12:41:11 connect from rectal.post.ru[ ] Apr 24 12:41:32 connect from triplex.post.ru[ ] Apr 24 12:42:04 connect from hole.post.ru[ ] Occasionally, a spammer will use your own server's name as a HELO string... Seite: 25

26 Address Verification Postfix (built-in feature) Seite: 26

27 Address verification Recipient address verification: Mails to non-existent addresses should be rejected as early as possible. Sender address verification: Mails from non-existent addresses are considered bad form. However, this doesn't stop people from sending them (newsletters, order confirmations...) Seite: 27

28 Address verification Recipient address verification is easy if you have a list of all valid addresses. Needless to say, usually you don't, because there are lots of different mail servers in your organization. The solution is to have your spam filter make dummy connections to the destination mail server. Seite: 28

29 Address verification To: Does exist? Spamfilter Mail Server Seite: 29

30 Content Filter SpamAssassin + ext. rulesets Seite: 30

31 The content filter is depicted here as a single step. Which is wrong. Content Filter Seite: 31

32 Content Filter SpamAssassin: hundreds of individual checks are applied to the content and structure of the . If one check is a hit, points are added to the mail's total spam score. Seite: 32

33 Content Filter A spam mail, 18-Nov-08: From: "Dickson"<support@leadsandmails.com> Subject: INVESTIGATION ON BEHALF OF OUR BANK Date: Tue, 18 Nov :28: To: undisclosed-recipients:; Dear Sir/Madam, I am conducting a standard process investigation on behalf of our Bank an international banking conglomerate. This investigation involves a client and also the circumstances surrounding investments made by this client with our Bank. Our client died intestate and nominated no successor in title over the investments made with our bank. The essence of this communication with you is to request you provide us information/comment on this issue so that I can use my position in the bank to establish your eligibility to assume status of successor in title to the deceased. Best regards, Seite: 33

34 Content Filter...and what the content filter made of it: X-Spam-Score: X-Spam-Report: * 2.0 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net * [Blocked - see < * 0.6 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) * 2.1 SUBJ_ALL_CAPS Subject is all capitals * 1.6 DEAR_SOMETHING BODY: Contains 'Dear (something)' * 0.0 BAYES_50 BODY: Bayesian spam probability is 40 to 60% * [score: ] * 0.5 RAZOR2_CHECK Listed in Razor2 ( * 1.5 RAZOR2_CF_RANGE_E4_51_100 Razor2 gives engine 4 confidence level * above 50% * [cf: 100] * 0.5 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% * [cf: 100] * 3.7 PYZOR_CHECK Listed in Pyzor ( * 0.0 DIGEST_MULTIPLE Message hits more than one network digest check * 0.8 MSOE_MID_WRONG_CASE MSOE_MID_WRONG_CASE * 3.1 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook Seite: 34

35 Content Filter If the total score exceeds a warning threshold, the mail's subject line will be modified: [*Spam?*] original subject line If the score exceeds a kill threshold, it will be quarantined. Seite: 35

36 Content Filter SpamAssassin comes with a large set of anti-spam rules, but you can still add more to it. Sa-Update will fetch rules from the SpamAssassin Rule Emporium (SARE) and various other sources like - openprotect.com - daryl.dostech.ca Seite: 36

37 Content Filter sa-update example: sa-update -D --channelfile /etc/spamassassin/channels.text --gpgkeyfile /etc/spamassassin/keys.text channels.text: updates.spamassassin.org saupdates.openprotect.com 70_sare_stocks.cf.sare.sa-update.dostech.net 70_sare_adult.cf.sare.sa-update.dostech.net [...more...] Seite: 37

38 Image-spam filter FuzzyOCR Seite: 38

39 Spam containers Spammers usually use text-only or HTML messages. But sometimes containers are used, such as - Images, e.g. animated.gifs - PDFs - Flash -.doc,.rtf,.ppt - MP3 Seite: 39

40 Seite: 40 Image Spam

41 Image to text FuzzyOCR extracts text from images and feeds it into SpamAssassin's content filter. FuzzyOCR even works with images that are - distorted, - animated, - only partly readable Seite: 41

42 Seite: 42 Spam containers

43 Seite: 43 Spam containers

44 Anti-Virus ClamAV + ext. pattern sources Seite: 44

45 Virus Filter With ClamAV, you can use virus patterns that you have made yourself (or someone you trust). These unofficial pattern files can be used to catch anything, not just viruses or malware. Seite: 45 For example, they can be aimed at spam (suprise!), phishing and attachments that aren't exactly spam, but unwanted nonetheless.

46 Virus Filter: third-party files Seite: 46 SaneSecurity and MSRBL provide pattern files for ClamAV and a shell script ( unofficial-sigs.sh ) to download them. rsync://rsync.sanesecurity.net/sanesecurity/phish.ndb rsync://rsync.sanesecurity.net/sanesecurity/scam.ndb rsync://rsync.sanesecurity.net/sanesecurity/junk.ndb rsync://rsync.sanesecurity.net/sanesecurity/rogue.hdb rsync://rsync.sanesecurity.net/sanesecurity/spear.ndb rsync://rsync.sanesecurity.net/sanesecurity/spamimg.hdb rsync://rsync.sanesecurity.net/sanesecurity/lott.ndb rsync://rsync.sanesecurity.net/sanesecurity/spam.ldb rsync://rsync.mirror.msrbl.com/msrbl/msrbl-images.hdb rsync://rsync.mirror.msrbl.com/msrbl/msrbl-spam.ndb

47 Seite: 47 Virus Filter: third-party files

48 Your own AV patterns HTML.Phishing.Bank-66:3:*:6c696d HTML.Phishing.Bank-66: name (shows up in logfile) 3: file type, 3 = HTML *: Offset 6c696d : hex-encoded string echo "limited access" sigtool --hex-dump Seite: 48

49 Your own AV patterns Creating pattern files against Container spam is even easier. sigtool --md5 thisisspam.gif >> /path/to/my-patterns.hdb Seite: 49

50 Body count DNSBL Kills 97% of incoming spam header checks Address Verification Content Filter Kills 3 %of incoming spam Image-spam filter Anti-Virus Seite: 50

51 Seite: 51

52 Fighting Spam with open source software Thank you! Questions?

one million mails a day: open source software to deal with it Charly Kühnast Municipal Datacenter for the Lower Rhine Area Moers, Germany

one million mails a day: open source software to deal with it Charly Kühnast Municipal Datacenter for the Lower Rhine Area Moers, Germany one million mails a day: open source software to deal with it Charly Kühnast Municipal Datacenter for the Lower Rhine Area Moers, Germany Internet many years ago... mail server mail client Seite: 2 today,

More information

eprism Email Security Appliance 6.0 Intercept Anti-Spam Quick Start Guide

eprism Email Security Appliance 6.0 Intercept Anti-Spam Quick Start Guide eprism Email Security Appliance 6.0 Intercept Anti-Spam Quick Start Guide This guide is designed to help the administrator configure the eprism Intercept Anti-Spam engine to provide a strong spam protection

More information

The Open Source Stack: One approach to spam filtering

The Open Source Stack: One approach to spam filtering The Open Source Stack: One approach to spam filtering Chris St. Pierre Unix Systems Administrator Nebraska Wesleyan University Breaks Administrivia Administrivia Can turn your cell phone off. Terminology

More information

AntiSpam QuickStart Guide

AntiSpam QuickStart Guide IceWarp Server AntiSpam QuickStart Guide Version 10 Printed on 28 September, 2009 i Contents IceWarp Server AntiSpam Quick Start 3 Introduction... 3 How it works... 3 AntiSpam Templates... 4 General...

More information

Spam blocking methods and experiences

Spam blocking methods and experiences Spam blocking methods and experiences Linuxdays Luxembourg 2003 christian mock http://www.tahina.priv.at/~cm/talks/spamblocking.{sxi,pdf} version 1.3 contents how spam is sent

More information

FortiMail Email Filtering Course 221-v2.0. Course Overview. Course Objectives

FortiMail Email Filtering Course 221-v2.0. Course Overview. Course Objectives FortiMail Email Filtering Course 221-v2.0 Course Overview FortiMail Email Filtering is a 2-day instructor-led course with comprehensive hands-on labs to provide you with the skills needed to configure,

More information

Exim4U. Email Server Solution For Unix And Linux Systems

Exim4U. Email Server Solution For Unix And Linux Systems Email Server Solution For Unix And Linux Systems General Overview, Feature Comparison and Screen Shots Exim4U Email Server Solution For Unix And Linux Systems Version 2.x.x October 12, 2012 Copyright 2009

More information

ETH Zürich - Mail Filtering Service

ETH Zürich - Mail Filtering Service Eidgenössische Technische Hochschule Zürich Swiss Federal Institute of Technology Zurich Informatikdienste / IT-Services ETH Zürich - Mail Filtering Service (TERENA 2009) 09 Dec 2009 - D. McLaughlin (davidmcl@ethz.ch)

More information

E-mail Content Scanning with Exim 4

E-mail Content Scanning with Exim 4 E-mail Content Scanning with Exim 4 Tim Jackson (tim@timj.co.uk) Overview Introduction to content scanning Content scanning at the MTA issues Methods of implementing content scanning Accept-and-scan SMTP-time

More information

Analysis of Spam Filter Methods on SMTP Servers Category: Trends in Anti-Spam Development

Analysis of Spam Filter Methods on SMTP Servers Category: Trends in Anti-Spam Development Analysis of Spam Filter Methods on SMTP Servers Category: Trends in Anti-Spam Development Author André Tschentscher Address Fachhochschule Erfurt - University of Applied Sciences Applied Computer Science

More information

Do you need to... Do you need to...

Do you need to... Do you need to... TM Guards your Email. Kills Spam and Viruses. Do you need to... Do you need to... Scan your e-mail traffic for Viruses? Scan your e-mail traffic for Viruses? Reduce time wasted dealing with Spam? Reduce

More information

Security. Help Documentation

Security. Help Documentation Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc. Security Antivirus Administration SmarterMail is equipped with

More information

E-MAIL FILTERING FAQ

E-MAIL FILTERING FAQ V8.3 E-MAIL FILTERING FAQ COLTON.COM Why? Why are we switching from Postini? The Postini product and service was acquired by Google in 2007. In 2011 Google announced it would discontinue Postini. Replacement:

More information

Quarantined Messages 5 What are quarantined messages? 5 What username and password do I use to access my quarantined messages? 5

Quarantined Messages 5 What are quarantined messages? 5 What username and password do I use to access my quarantined messages? 5 Contents Paul Bunyan Net Email Filter 1 What is the Paul Bunyan Net Email Filter? 1 How do I get to the Email Filter? 1 How do I release a message from the Email Filter? 1 How do I delete messages listed

More information

Hosted CanIt. Roaring Penguin Software Inc. 26 April 2011

Hosted CanIt. Roaring Penguin Software Inc. 26 April 2011 Hosted CanIt Roaring Penguin Software Inc. 26 April 2011 1 1 Introduction Thank you for selecting Hosted CanIt. This document explains how Hosted CanIt works and how you should configure your network to

More information

Intercept Anti-Spam Quick Start Guide

Intercept Anti-Spam Quick Start Guide Intercept Anti-Spam Quick Start Guide Software Version: 6.5.2 Date: 5/24/07 PREFACE...3 PRODUCT DOCUMENTATION...3 CONVENTIONS...3 CONTACTING TECHNICAL SUPPORT...4 COPYRIGHT INFORMATION...4 OVERVIEW...5

More information

escan Anti-Spam White Paper

escan Anti-Spam White Paper escan Anti-Spam White Paper Document Version (esnas 14.0.0.1) Creation Date: 19 th Feb, 2013 Preface The purpose of this document is to discuss issues and problems associated with spam email, describe

More information

Effective Open-Source Spam Filtering

Effective Open-Source Spam Filtering Effective Open-Source Spam Filtering For Enterprise Chris Lewis Thomas Choi October 2008 Agenda Introduction Background Something New - Rationale The Open-Source Project Basic Requirements Components IntegrationI

More information

Anti Spam Best Practices

Anti Spam Best Practices 39 Anti Spam Best Practices Anti Spam Engine: Time-Tested Scanning An IceWarp White Paper October 2008 www.icewarp.com 40 Background The proliferation of spam will increase. That is a fact. Secure Computing

More information

Collateral Damage. Consequences of Spam and Virus Filtering for the E-Mail System. Peter Eisentraut 22C3. credativ GmbH.

Collateral Damage. Consequences of Spam and Virus Filtering for the E-Mail System. Peter Eisentraut 22C3. credativ GmbH. Consequences of Spam and Virus Filtering for the E-Mail System 22C3 Introduction 12 years of spam... 24 years of SMTP... Things have changed: SMTP is no longer enough. Spam filters, virus filters are part

More information

Spam Filtering at CERN Emmanuel Ormancey - 23 October 2002

Spam Filtering at CERN Emmanuel Ormancey - 23 October 2002 Spam Filtering at CERN Emmanuel Ormancey - 23 October 2002 23 October 2002 Emmanuel Ormancey 1 Topics Statistics Current Spam filtering at CERN Products overview Selected solution How it works Exchange

More information

ContentCatcher. Voyant Strategies. Best Practice for E-Mail Gateway Security and Enterprise-class Spam Filtering

ContentCatcher. Voyant Strategies. Best Practice for E-Mail Gateway Security and Enterprise-class Spam Filtering Voyant Strategies ContentCatcher Best Practice for E-Mail Gateway Security and Enterprise-class Spam Filtering tm No one can argue that E-mail has become one of the most important tools for the successful

More information

English Translation of SecurityGateway for Exchange/SMTP Servers

English Translation of SecurityGateway for Exchange/SMTP Servers Testing: Alt N Technologies SecurityGateway by Sandra Lucifora Administrators spend a considerable amount of their time on the job on eliminating unwanted messages. Viruses, Phishing, and Spoofing pose

More information

FortiMail Email Filtering Course 221-v2.2 Course Overview

FortiMail Email Filtering Course 221-v2.2 Course Overview FortiMail Email Filtering Course 221-v2.2 Course Overview FortiMail Email Filtering is a 2-day instructor-led course with comprehensive hands-on labs to provide you with the skills needed to design, configure,

More information

SPAM FILTER Service Data Sheet

SPAM FILTER Service Data Sheet Content 1 Spam detection problem 1.1 What is spam? 1.2 How is spam detected? 2 Infomail 3 EveryCloud Spam Filter features 3.1 Cloud architecture 3.2 Incoming email traffic protection 3.2.1 Mail traffic

More information

Spamfilter Relay Mailserver

Spamfilter Relay Mailserver Spamfilter Relay Mailserver Mark McSweeney CentraLUG, February 1, 2010 Overview Scope Little bit about me Why I built the spamfilter Deployment environment Spamfilter details Tuning and maintainance Other

More information

About this documentation

About this documentation Wilkes University, Staff, and Students have a new email spam filter to protect against unwanted email messages. Barracuda SPAM Firewall will filter email for all campus email accounts before it gets to

More information

Comprehensive Email Filtering. Whitepaper

Comprehensive Email Filtering. Whitepaper Comprehensive Email Filtering Whitepaper Email has undoubtedly become a valued communications tool among organizations worldwide. With frequent virus attacks and the alarming influx of spam, email loses

More information

Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.

Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. 2001 2014 EdgeWave. All rights reserved. The EdgeWave logo is a trademark of EdgeWave Inc. All other trademarks and registered trademarks are hereby acknowledged. Microsoft and Windows are either registered

More information

eprism Email Security Suite

eprism Email Security Suite FAQ V8.3 eprism Email Security Suite 800-782-3762 www.edgewave.com 2001 2012 EdgeWave. All rights reserved. The EdgeWave logo is a trademark of EdgeWave Inc. All other trademarks and registered trademarks

More information

Antispam Security Best Practices

Antispam Security Best Practices Antispam Security Best Practices First, the bad news. In the war between spammers and legitimate mail users, spammers are winning, and will continue to do so for the foreseeable future. The cost for spammers

More information

ECE Mail System Overview. Pablo J. Rebollo ECE Network Operations Center

ECE Mail System Overview. Pablo J. Rebollo ECE Network Operations Center ECE Mail System Overview Pablo J. Rebollo ECE Network Operations Center Agenda Overview of ECE mail system How mail system works SPAM!!! ECE mail system statistics and examples Problems References Mail

More information

How To Protect Your Email From Spam On A Barracuda Spam And Virus Firewall

How To Protect Your Email From Spam On A Barracuda Spam And Virus Firewall Comprehensive Email Filtering: Barracuda Spam & Virus Firewall Safeguards Legitimate Email Email has undoubtedly become a valued communications tool among organizations worldwide. With frequent virus attacks

More information

eprism Email Security Suite

eprism Email Security Suite FAQ V8.3 eprism Email Security Suite 800-782-3762 www.edgewave.com 2001 2012 EdgeWave. All rights reserved. The EdgeWave logo is a trademark of EdgeWave Inc. All other trademarks and registered trademarks

More information

Enhanced Spam Defence

Enhanced Spam Defence Enhanced Spam Defence An approach to making SMTP connect time blocking a reliable method for e-mail filtering By John Jensen, Topsec Technology Ltd. As the spam problem keeps growing and the associated

More information

Blocking Spam Sessions with Greylisting and Block Listing based on Client Behavior

Blocking Spam Sessions with Greylisting and Block Listing based on Client Behavior Blocking Spam Sessions with Greylisting and Block Listing based on Client Behavior Pin-Ren Chiou, Po-Ching Lin, Chun-Ta Li Department of Computer Science and Information Engineering National Chung Cheng

More information

Objective This howto demonstrates and explains the different mechanisms for fending off unwanted spam e-mail.

Objective This howto demonstrates and explains the different mechanisms for fending off unwanted spam e-mail. Collax Spam Filter Howto This howto describes the configuration of the spam filter on a Collax server. Requirements Collax Business Server Collax Groupware Suite Collax Security Gateway Collax Platform

More information

A Monitor Tool for Anti-spam Mechanisms and Spammers Behavior

A Monitor Tool for Anti-spam Mechanisms and Spammers Behavior A Monitor Tool for Anti-spam Mechanisms and Spammers Behavior Danilo Michalczuk Taveira and Otto Carlos Muniz Bandeira Duarte UFRJ - PEE/COPPE/GTA - DEL/POLI P.O. Box 6854-2945-97, Rio de Janeiro, RJ,

More information

Avira Managed Email Security AMES FAQ. www.avira.com

Avira Managed Email Security AMES FAQ. www.avira.com Avira Managed Email Security AMES FAQ www.avira.com Can AMES be used immediately after an account for our organization has been set up in the MyAccount user portal? Using your account requires a change

More information

Dealing with spam mail

Dealing with spam mail Vodafone Hosted Services Dealing with spam mail User guide Welcome. This guide will help you to set up anti-spam measures on your email accounts and domains. The main principle behind dealing with spam

More information

2014-10-07. Email security

2014-10-07. Email security Email security Simple Mail Transfer Protocol First defined in RFC821 (1982), later updated in RFC 2821 (2001) and most recently in RFC5321 (Oct 2008) Communication involves two hosts SMTP Client SMTP Server

More information

Anti-spam filtering techniques

Anti-spam filtering techniques Anti-spam filtering techniques Stéphane Bortzmeyer AFNIC (.fr registry) bortzmeyer@nic.fr ITU, 19 january 2006 1 Anti-spam filtering techniques Background on this work This work started in the french Working

More information

Technical Note. FORTIMAIL Configuration For Enterprise Deployment. Rev 2.1

Technical Note. FORTIMAIL Configuration For Enterprise Deployment. Rev 2.1 Technical Note FORTIMAIL Configuration For Enterprise Deployment Rev 2.1 April 7, 2009 Table of Contents 1 Introduction... 3 1.1 Objective... 3 1.2 Network deployment... 3 1.3 Convention... 3 2 System

More information

Top 10 Features: Clearswift SECURE Email Gateway

Top 10 Features: Clearswift SECURE Email Gateway Top 10 Features: Clearswift SECURE Email Gateway Top 10 Features: Clearswift SECURE Email Gateway Modern business simply couldn t function without email. However, both incoming and outgoing messages can

More information

Administrator Manual v3.0

Administrator Manual v3.0 Administrator Manual v3.0 SecurityGateway for Email Servers Administrator Manual Products that are referred to in this document may be trademarks and/or registered trademarks of the respective owners.

More information

An Overview of Spam Blocking Techniques

An Overview of Spam Blocking Techniques An Overview of Spam Blocking Techniques Recent analyst estimates indicate that over 60 percent of the world s email is unsolicited email, or spam. Spam is no longer just a simple annoyance. Spam has now

More information

1 Accessing E-mail accounts on the Axxess Mail Server

1 Accessing E-mail accounts on the Axxess Mail Server 1 Accessing E-mail accounts on the Axxess Mail Server The Axxess Mail Server provides users with access to their e-mail folders through POP3, and IMAP protocols, or OpenWebMail browser interface. The server

More information

Panda Cloud Email Protection

Panda Cloud Email Protection Panda Cloud Email Protection 1. Introduction a) What is spam? Spam is the term used to describe unsolicited messages or messages sent from unknown senders. They are usually sent in large (even massive)

More information

Fighting Spam: Tools, Tips, and Techniques

Fighting Spam: Tools, Tips, and Techniques Fighting Spam: Tools, Tips, and Techniques Brian Sebby Argonne National Laboratory NetSecure 08 IIT Center for Professional Development Part I: Introduction 2 Argonne National Laboratory IT Environment

More information

A D M I N I S T R A T O R V 1. 0

A D M I N I S T R A T O R V 1. 0 A D M I N I S T R A T O R F A Q V 1. 0 2011 Fastnet SA, St-Sulpice, Switzerland. All rights reserved. Reproduction in whole or in part in any form of this manual without written permission of Fastnet SA

More information

Frequently Asked Questions for New Electric Mail Administrators 1 Domain Setup/Administration

Frequently Asked Questions for New Electric Mail Administrators 1 Domain Setup/Administration Frequently Asked Questions for New Electric Mail Administrators 1 Domain Setup/Administration 1.1 How do I access the records of the domain(s) that I administer? To access the domains you administer, you

More information

Email. Daniel Zappala. CS 460 Computer Networking Brigham Young University

Email. Daniel Zappala. CS 460 Computer Networking Brigham Young University Email Daniel Zappala CS 460 Computer Networking Brigham Young University How Email Works 3/25 Major Components user agents POP, IMAP, or HTTP to exchange mail mail transfer agents (MTAs) mailbox to hold

More information

Eiteasy s Enterprise Email Filter

Eiteasy s Enterprise Email Filter Eiteasy s Enterprise Email Filter Eiteasy s Enterprise Email Filter acts as a shield for companies, small and large, who are being inundated with Spam, viruses and other malevolent outside threats. Spammer

More information

How to Stop Spam Emails and Bounces

How to Stop Spam Emails and Bounces Managing Your Email Reputation For most companies and organizations, email is the most important means of business communication. The value of email today, however, has been compromised by the rampant

More information

Mail Avenger. David Mazières New York University

Mail Avenger. David Mazières New York University Mail Avenger David Mazières New York University Early design goals for email Work over weakly connected networks - E.g., early Internet, UUCP, etc. - Move mail closer to recipient whenever you can... -

More information

Copyright 2011 Sophos Ltd. Copyright strictly reserved. These materials are not to be reproduced, either in whole or in part, without permissions.

Copyright 2011 Sophos Ltd. Copyright strictly reserved. These materials are not to be reproduced, either in whole or in part, without permissions. PureMessage for Microsoft Exchange protects Microsoft Exchange servers and Windows gateways against email borne threats such as from spam, phishing, viruses, spyware. In addition, it controls information

More information

Simplicity Value Documentation 3.5/5 5/5 4.5/5 Functionality Performance Overall 4/5 4.5/5 86%

Simplicity Value Documentation 3.5/5 5/5 4.5/5 Functionality Performance Overall 4/5 4.5/5 86% Alt-N SecurityGateway for Email Servers - Universal Email Security Gateway Manufacturer: Alt-N Technologies Model: Standard Origin: Texas, USA Website: www.altn.com Price: 204 for up to 25 users Simplicity

More information

Manual Prepared by GalaxyVisions Customer Care Team

Manual Prepared by GalaxyVisions Customer Care Team Toll Free: 1.866-GVHOST1 (484-6781) 882 3rd Ave, 8th Floor, Brooklyn, Ny 11232 Manual Prepared by GalaxyVisions Customer Care Team Topics Covered The problem How to prevent spammers from using my server

More information

Comprehensive Anti-Spam Service

Comprehensive Anti-Spam Service Comprehensive Anti-Spam Service Chapter 1: Document Scope This document describes how to implement and manage the Comprehensive Anti-Spam Service. This document contains the following sections: Comprehensive

More information

Email Marketing Do s and Don ts A Sprint Mail Whitepaper

Email Marketing Do s and Don ts A Sprint Mail Whitepaper Email Marketing Do s and Don ts A Sprint Mail Whitepaper Table of Contents: Part One Email Marketing Dos and Don ts The Right Way of Email Marketing The Wrong Way of Email Marketing Outlook s limitations

More information

Commtouch RPD Technology. Network Based Protection Against Email-Borne Threats

Commtouch RPD Technology. Network Based Protection Against Email-Borne Threats Network Based Protection Against Email-Borne Threats Fighting Spam, Phishing and Malware Spam, phishing and email-borne malware such as viruses and worms are most often released in large quantities in

More information

Cloud Email Firewall. 1. Introduction. a. What is Spam?

Cloud Email Firewall. 1. Introduction. a. What is Spam? Cloud Email Firewall 1. Introduction a. What is Spam? Spam are messages which are unsolicited or sent from unknown senders. Usually they are sent in large quantities (even massive) and with commercial

More information

Comprehensive Email Filtering: Barracuda Spam Firewall Safeguards Legitimate Email

Comprehensive Email Filtering: Barracuda Spam Firewall Safeguards Legitimate Email : Barracuda Firewall Safeguards Legitimate Email Email has undoubtedly become a valued communications tool among organizations worldwide. With frequent virus attacks and the alarming influx of spam, email

More information

Email Filtering with Open Source Software. OLUG June 7, 2005

Email Filtering with Open Source Software. OLUG June 7, 2005 Email Filtering with Open Source Software OLUG June 7, 2005 Presenter Bio Undergraduate Education Nebraska Wesleyan University B.A. Business Administration Minor Computer Science Professional Experience

More information

Implementing MDaemon as an Email Security Gateway to Exchange Server

Implementing MDaemon as an Email Security Gateway to Exchange Server Implementing MDaemon as an Email Security Gateway to Exchange Server Introduction MDaemon is widely deployed as a very effective antispam/antivirus gateway to Exchange. For optimum performance, we recommend

More information

Anti-Spam Service User s Guide Advanced Internet Technologies, Inc. December 3, 2004

Anti-Spam Service User s Guide Advanced Internet Technologies, Inc. December 3, 2004 Page 1 of 7 Anti-Spam Service User s Guide Advanced Internet Technologies, Inc. December 3, 2004 Search All Your Favorite Engines from a Single Source with tybit!!! (Download Now) Revision History: This

More information

Trend Micro Hosted Email Security Stop Spam. Save Time.

Trend Micro Hosted Email Security Stop Spam. Save Time. Trend Micro Hosted Email Security Stop Spam. Save Time. How Hosted Email Security Inbound Filtering Adds Value to Your Existing Environment A Trend Micro White Paper l March 2010 1 Table of Contents Introduction...3

More information

Some fitting of naive Bayesian spam filtering for Japanese environment

Some fitting of naive Bayesian spam filtering for Japanese environment Some fitting of naive Bayesian spam filtering for Japanese environment Manabu Iwanaga 1, Toshihiro Tabata 2, and Kouichi Sakurai 2 1 Graduate School of Information Science and Electrical Engineering, Kyushu

More information

Email Security and Spam Prevention. March 25, 2004 Tim Faltemier Saurabh Jain

Email Security and Spam Prevention. March 25, 2004 Tim Faltemier Saurabh Jain Email Security and Spam Prevention March 25, 2004 Tim Faltemier Saurabh Jain Email Spam (Impact ) Spam- Unsolicited Email that lack affirmative consent from Receiver. America Online estimated that between

More information

Log Analyzer Viewer Guide

Log Analyzer Viewer Guide IceWarp Unified Communications Log Analyzer Viewer Guide Version 10.3 Printed on 10 December, 2010 Contents Log Analyzer Viewer 1 Introduction... 1 Special thanks:... 1 Getting Started... 3 Log Analyzer

More information

ESET Mail Security 4. User Guide. for Microsoft Exchange Server. Microsoft Windows 2000 / 2003 / 2008

ESET Mail Security 4. User Guide. for Microsoft Exchange Server. Microsoft Windows 2000 / 2003 / 2008 ESET Mail Security 4 for Microsoft Exchange Server User Guide Microsoft Windows 2000 / 2003 / 2008 Content 1. Introduction...4 1.1 System requirements... 4 1.2 Methods Used... 4 1.2.1 Mailbox scanning

More information

How To Filter Email From A Spam Filter

How To Filter Email From A Spam Filter Spam Filtering A WORD TO THE WISE WHITE PAPER BY LAURA ATKINS, CO- FOUNDER 2 Introduction Spam filtering is a catch- all term that describes the steps that happen to an email between a sender and a receiver

More information

Spam, Spam and More Spam. Spammers: Cost to send

Spam, Spam and More Spam. Spammers: Cost to send Spam, Spam and More Spam cs5480/cs6480 Matthew J. Probst *with some slides/graphics adapted from J.F Kurose and K.W. Ross Spammers: Cost to send Assuming a $10/mo dialup account: 13.4 million messages

More information

Novel Mechanism to Defend DDoS Attacks Caused by Spam

Novel Mechanism to Defend DDoS Attacks Caused by Spam Novel Mechanism to Defend DDoS Attacks Caused by Spam Dhinaharan Nagamalai Wireilla Net Solutions Inc, Chennai, India Cynthia Dhinakaran and Jae Kwang Lee Department of Computer Engineering, Hannam University,

More information

Government of Canada Managed Security Service (GCMSS) Annex A-5: Statement of Work - Antispam

Government of Canada Managed Security Service (GCMSS) Annex A-5: Statement of Work - Antispam Government of Canada Managed Security Service (GCMSS) Date: June 8, 2012 TABLE OF CONTENTS 1 ANTISPAM... 1 1.1 QUALITY OF SERVICE...1 1.2 DETECTION AND RESPONSE...1 1.3 MESSAGE HANDLING...2 1.4 CONFIGURATION...2

More information

Email Marketing Glossary of Terms

Email Marketing Glossary of Terms Email Marketing Glossary of Terms A/B Testing: A method of testing in which a small, random sample of an email list is split in two. One email is sent to the list A and another modified email is sent to

More information

Anti-SPAM Solutions as a Component of Digital Communications Management

Anti-SPAM Solutions as a Component of Digital Communications Management Anti-SPAM Solutions as a Component of Digital Communications Management Ron Shuck CISSP, GCIA, CCSE Agenda What is Spam & what can you do? What is the cost of Spam E-mail E to organizations? How do we

More information

Setting up Microsoft Outlook to reject unsolicited email (UCE or Spam )

Setting up Microsoft Outlook to reject unsolicited email (UCE or Spam ) Reference : USER 191 Issue date : January 2004 Updated : January 2008 Classification : Staff Authors : Matt Vernon, Richard Rogers Setting up Microsoft Outlook to reject unsolicited email (UCE or Spam

More information

procmail and SpamAssassin

procmail and SpamAssassin procmail and SpamAssassin UCLA Linux User Group, February 2004 Ben Clifford benc@linux.ucla.edu procmailandspamassassin p.1 Outline Two related themes: procmail Filtering mail SpamAssassin Detecting spam

More information

Technical Note. ISP Protection against BlackListing. FORTIMAIL Deployment for Outbound Spam Filtering. Rev 2.2

Technical Note. ISP Protection against BlackListing. FORTIMAIL Deployment for Outbound Spam Filtering. Rev 2.2 Technical Note ISP Protection against BlackListing FORTIMAIL Deployment for Outbound Spam Filtering Rev 2.2 April 14, 2009 Table of Contents 1 Objective IP address protection... 3 1.1 Context... 3 1.2

More information

Ipswitch IMail Server with Integrated Technology

Ipswitch IMail Server with Integrated Technology Ipswitch IMail Server with Integrated Technology As spammers grow in their cleverness, their means of inundating your life with spam continues to grow very ingeniously. The majority of spam messages these

More information

GFI Product Comparison. GFI MailEssentials vs Barracuda Spam Firewall

GFI Product Comparison. GFI MailEssentials vs Barracuda Spam Firewall GFI Product Comparison GFI MailEssentials vs Barracuda Spam Firewall GFI MailEssentials Barracuda Spam Firewall Integrates closely with Microsoft Exchange Server 2003/2007/2010 Integrates closely with

More information

Introduction. How does email filtering work? What is the Quarantine? What is an End User Digest?

Introduction. How does email filtering work? What is the Quarantine? What is an End User Digest? Introduction The purpose of this memo is to explain how the email that originates from outside this organization is processed, and to describe the tools that you can use to manage your personal spam quarantine.

More information

ExchangeDefender. Understanding the tool that can save and secure your business

ExchangeDefender. Understanding the tool that can save and secure your business ExchangeDefender Understanding the tool that can save and secure your business OVERVIEW The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting.

More information

Quick Start Policy Patrol Spam Filter 5

Quick Start Policy Patrol Spam Filter 5 Quick Start Policy Patrol Spam Filter 5 This guide will help you start using Policy Patrol Spam Filter as quickly as possible. For more detailed instructions, consult the Policy Patrol manual. Step 1.

More information

Anti-Spam Measures Survey 2009. Pascal Manzano ENISA

Anti-Spam Measures Survey 2009. Pascal Manzano ENISA Anti-Spam Measures Survey 2009 Pascal Manzano ENISA Do you remember what happen on June 25 th? Methodology Online questionnaire open from May until July 2009 Questionnaire used providers best practices

More information

USAGE GUIDE ADAM INTERNET SPAM FILTER MANAGER

USAGE GUIDE ADAM INTERNET SPAM FILTER MANAGER USAGE GUIDE ADAM INTERNET SPAM FILTER MANAGER Introduction For all Business Domain hosting services, Adam Internet provides the ability to add SPAM and VIRUS filtering. This service reduces the amount

More information

Whose IP Is It Anyways: Tales of IP Reputation Failures

Whose IP Is It Anyways: Tales of IP Reputation Failures Whose IP Is It Anyways: Tales of IP Reputation Failures SESSION ID: SPO-T07 Michael Hamelin Lead X-Force Security Architect IBM Security Systems @HackerJoe What is reputation? 2 House banners tell a story

More information

Email Migration Project Plan for Cisco Cloud Email Security

Email Migration Project Plan for Cisco Cloud Email Security Sales Tool Email Migration Project Plan for Cisco Cloud Email Security 2014 Cisco and/or its affiliates. All rights reserv ed. This document is Cisco Conf idential. For Channel Partner use only. Not f

More information

Software Engineering 4C03 SPAM

Software Engineering 4C03 SPAM Software Engineering 4C03 SPAM Introduction As the commercialization of the Internet continues, unsolicited bulk email has reached epidemic proportions as more and more marketers turn to bulk email as

More information

Fighting against Spam-Mail

Fighting against Spam-Mail LinuxFocus article number 279 http://linuxfocus.org Fighting against Spam-Mail by Katja and Guido Socher About the authors: Katja is the German editor

More information

The Network Box Anti-Spam Solution

The Network Box Anti-Spam Solution NETWORK BOX TECHNICAL WHITE PAPER The Network Box Anti-Spam Solution Background More than 2,000 years ago, Sun Tzu wrote if you know yourself but not the enemy, for every victory gained you will also suffer

More information

COMBATING SPAM. Best Practices OVERVIEW. White Paper. March 2007

COMBATING SPAM. Best Practices OVERVIEW. White Paper. March 2007 COMBATING SPAM Best Practices March 2007 OVERVIEW Spam, Spam, More Spam and Now Spyware, Fraud and Forgery Spam used to be just annoying, but today its impact on an organization can be costly in many different

More information

HLI MailGuard For End Users

HLI MailGuard For End Users HLI MailGuard For End Users VC Technology Solutions, Inc. 6085 King Drive, Unit 102 Ventura, CA 93003 HLI MailGuard For End Users 1 Introduction 1.1 1.2 1.3 1.4 Contacting HLI Systems 5 The Unwanted E-mail

More information

Quick Start Policy Patrol Mail Security 9

Quick Start Policy Patrol Mail Security 9 Quick Start Policy Patrol Mail Security 9 This guide will help you start using Policy Patrol Mail Security as quickly as possible. For more detailed instructions, consult the Policy Patrol manual. Step

More information

Pattern-based Messaging Security for Hosting Providers

Pattern-based Messaging Security for Hosting Providers Pattern-based Messaging Security for Hosting Providers Email hosting is a key offering for Web hosting providers, and many deployments seem straightforward at first glance. Yet any email hosting offering

More information

What is a Mail Gateway?... 1 Mail Gateway Setup... 2. Peering... 3 Domain Forwarding... 4 External Address Verification... 4

What is a Mail Gateway?... 1 Mail Gateway Setup... 2. Peering... 3 Domain Forwarding... 4 External Address Verification... 4 Contents CHAPTER 1 IMail Secure Server as a Mail Gateway What is a Mail Gateway?... 1 Mail Gateway Setup... 2 CHAPTER 2 Possible Mail Gateway Configurations Peering... 3 Domain Forwarding... 4 External

More information

ScavengerEXA. An open source program To fight spam at the source. Thomas Mangin Exa Networks UKNOF 12 2009/02/13

ScavengerEXA. An open source program To fight spam at the source. Thomas Mangin Exa Networks UKNOF 12 2009/02/13 ScavengerEXA An open source program To fight spam at the source Thomas Mangin Exa Networks UKNOF 12 2009/02/13 http://wiki.exa.org.uk/doku.phpdo=export_s5&id=scavenger:uknof12 The spam battle - Yesterday

More information

Release Notes. for Kerio Connect 8.0.0

Release Notes. for Kerio Connect 8.0.0 Release Notes for Kerio Connect 8.0.0 Date: December 4, 2012 2012 Kerio Technologies. All rights reserved. 1 Important changes in this version New Kerio Connect client The Kerio Connect webmail interface

More information

Domains Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc.

Domains Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc. Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc. Domains All Domains System administrators can use this section

More information