 |
|
Customer Support
 |
|
How does the mail server filter spam and viruses?
Modwest provides several layers of email filtering to reduce the amount of unwanted email delivered to your mailboxes on the shared system.- The source IP of the incoming email is compared to spam blacklists, including the Spamcop Blocklist, a dynamically refreshing database of IP addresses from which numerous spam messages have recently been reported. In the event of a match, the email is temporarily deferred for later attempted delivery. Depending on the sender's ISP's server configuration, re-delivery is attempted for 1-4 days. If the source of the email is no longer present in the spam blacklists upon any later delivery attempt, the email makes it to subsequent checks (described below). There currently is no way on the shared system to opt-out of this filtering.
- The sender address (SMTP 'MAIL FROM:') of the incoming message is checked for a valid domain name. Unregistered domains, or domains for which no DNS records exist, result in a rejection similar to "Sender address rejected: Domain not found".
- Unauthenticated SMTP attempts from certain dynamic IP ranges (such as those associated with broadband residential ISPs) may be rejected with an error message similar to "Please use your ISP's mail server" if large amounts of spam is noted from these ranges. This rarely results in the rejection of legitimate mail relayed via mail servers hosted on these connections; the solution is for the mail administrator to configure Exchange to relay through the ISP's mail server, or request alternative reverse DNS (such as mail.businessname.isp.com rather than the autogenerated reverse DNS) from the ISP.
- The destination address is checked, and if it's not valid, the email is returned to the sender with an 'Unknown user' error message.
- As an emergency countermeasure against emerging worm and malware threats, we will occasionally at this point in the delivery process reject attachments with certain filenames. Legitimate senders will receive a bounce message explaining the non-delivery in these cases.
- Attachments are next checked for dangerous content, including attachments with file extensions such as .reg, .chm, .cnf, .ins, .jse, .lnk, .pif, .scf, .sct, .shb, .vbs, .xnk, .com, .exe, .scr, .bat, .cmd, .cpl, .mhtml, as well as any attachment with a very long filename, executable files, and filenames with many spaces. Any matches are silently quarantined. There currently is no way on the shared system to opt-out of this filtering.
- Next, our virus signature database is consulted, and any infected emails are discarded. There currently is no way on the shared system to opt-out of this filtering.
- Finally, per-mailbox spam preferences are applied and the email is handled accordingly.
In no case, except as specifically noted above, are senders notified of an email being discarded. This is because most email generated by viruses provides a fake 'From' address, and notifying these innocent users would needlessly cause alarm and confusion.
User-Contributed Notes |
|
| There are no user-contributed notes for this topic. |
Related Questions:
Sending email takes a long time and then fails.
I get "relaying denied" when trying to send email from my computer.
My ISP does not give me an SMTP/Outgoing mailserver to send mail from my own computer, so I must use yours.
How do I send email?
Do you have screenshots of Outlook Express configurations?
How do I receive and read e-mail?
Occasionally, Outlook Express just asks for my username and password but will not let me get my mail.
Someone is sending viruses or spam that appears to come "from" an address at my domain.
Why can't I send or receive email with large attachments?
Do you support Secure POP and IMAP?
Do you have screenshots of Entourage 2004 configurations?
I can't get my email because I am continually asked to retype my mailbox password, or am getting a [LOGIN-DELAY] error.
Why am I getting spam?
Can I have a special MX record so a different mailserver like everyone.net or my own Exchange server will handle all mail for my domain?
Is there a way I can bounce all email addressed to unknown users?
How many email addresses can I have and how do aliases work?
How do I protect email that contains sensitive information?
Can I have an automatic reply sent to people who email me while I'm on vacation?
How do I delete hundreds or thousands of emails easily?
Can I pipe email to a program?
When I use webmail, my address on outgoing mails is inaccurate.
When I "Add Mailbox" in Onsite, it says "That login name is already taken. Please choose another."
Can I do mass emailings through my ISP that advertises my website?
Do you scan email for viruses?
I receive too much SPAM: what can I do?
I cannot get into webmail.
My website forms are spamming me with 'gibberish@mydomain.com' or Form Email Injection Attack
Why are HTML emails a security hazard?
Why won't my email attachment go through?
Which e-mail protocol should I use, POP or IMAP?
How do I view full email headers?
I get this error when logging into Webmail: Security failure, data decryption error
How Do I Backup My Email?
Do you support anti-forgery standards (SPF / DomainKeys) for email?
How do I import addresses into webmail?
How do I forward e-mail in OnSite?
Do you purge messages from Trash and Spam folders?
Why can't I forward @mydomain.com email to my ISP mailbox?
Why is/isn't an email being marked as spam?
Why can't I delete messages from my mailbox if it is over quota?
Can I have an email address which both stores and forwards mail?
How can I access my Modwest mail from another provider's webmail?
What does the "Flag Subject" radio button do in OnSite spam settings?
Browse Categories:Getting Started, FTP, Telnet/SSH, Moving Domains, E-mail, Traffic Reports, Mailing Lists, Apache, PHP, CGI, Other Server-Side Scripting, MySQL Database, Imaging Libraries, Other Software, Billing & Terms, Control Panel, E-commerce, Pre-Sales |
Copyright
2000-2008 by Modwest,
Inc.