It is a SPAM

It is a SPAM

I think this is a similar topic we have discussed not long ago. Let me refresh your memory on this about spam email.

What is your definition of a spam email that you have received? Right, most said unwanted email. Wait a minute, how do system knows you want or don’t want the email? Here’s the problem, an email server or an antispam does not know you want that email to be detected as spam.

So, the understanding of an end-user and the definition set in the server are not the same. Well, we try to minimize this false-positive but this is happening.

The less sophisticated antispam uses RBL. RBL is known as a realtime blackhole list, this is the most basic and common way to fight spam. The type of techniques is based on the source of that email. If the RBL has blacklisted the source base on IP address. Somehow it has worked but it isn’t perfect until if someone’s account is compromised and it was used to send spam.

Then with SPF & DKIM, to tell others I only send out my organization’s email on these email servers and signed my outgoing emails as shown in my domain’s DNS. The trouble is others in the organization were not informed if they were sent from anywhere or the server’s IP address is not stated` in the SPF. In this type of scenario, emails were genuine can be rejected or quarantined.

Servers with antispam mechanism, no matter how sophisticated they are, it boiled down to compliance. Servers don’t read your thought, they are set up with preset rules to determine an incoming email is spam or not.

So if you are sending emails from an email server that has not been defined in the DNS or an outgoing email was signed but it was not matched the key published in the DNS. Even that you are representing the organization. your email will be rejected.

More intelligent email antispam read incoming emails if the content or words look spammy, they can be rejected too. These are a few techniques are used in antispam.

I want to mention this to all email server’s administrator, please send a returned message if you reject the senders’ email. I have seen email was rejected and dropped quietly, made tracing difficult.

 

 

DKIM exempted you as Spammer?

DKIM exempted you as Spammer?

A while ago someone came to me, asked if I can add DKIM so his company is not identified as a spammer. In a way, yes but in another way is a no. Why do I say so?

DKIM is easy to advertise in the zone records nowadays. Many popular control panels have such ability to publish whether your DNS is hosted on the same server or just copy them into your DNS hosted elsewhere. Whichever the case, DKIM allows you to sign an outgoing email is to match with the public key you have advertised in the public DNS, to tell others it is sent by real me.

DKIM is one of the best methods to identify email is spoofed, impersonating a person in the organization. Here’s the catch, only the authorized mail server signed that email. If you are using another email server signed with different keys, it will cause a failure if DKIM of your recipient mail server is validating DKIM.

2 things, if your recipient mail server is not checking on DKIM or no action is taken. The real sender email account has been compromised. For these cases, how can DKIM protect your organization?

ConfigServer MailScanner Front-End

ConfigServer MailScanner Front-End

Today, I want to mention a product or rather an installation for cPanel users is the ConfigServer MailScanner Front-End. Do not mix up with the Configserver MailScanner, even they are the same in the backend, MailScanner’s front end made your life easier and made anti-spam effectively. I recommend to cPanel users if they are looking for a cost-effective antispam solution.

MAILSCANNERMost anti-spam is not integrated. They use MX to help you filter spam emails. If it is injected to the mail server, it is local delivery though LMTP, this kind of solution is not effective. However, the integrated means you need resources, and there is on overhead especially to those have a high volume of email traffic.

MAILSCANNERIf anti-spam is your top priority, Configserver MailScanner with the Front End is worth considering. With my past experience, you are safe to quarantine emails with a score as low as 2. In addition, the front end gives you the ability on how you want to keep the quarantined emails.

Anti-spam is not 100%, users unwanted email considered to a user as spam might not be the case for antispam. Antispam a few rules and gives a score of each rule to add them up should the email’s score is more than the threshold. There are cases, spam or unwanted emails have slipped through your anti-spam, MailScanner Front End allows you to click on the button to learn, to learn and port as spam, or blacklist sender and its domain.

Configserver charges USD 55 onetime fee for MailScanner front end, I personally think it is affordable and cPanel users should install if they want effective antispam.