Outgoing scanning

Alex Neuman alex at vidadigital.com.pa
Tue Feb 19 13:30:04 GMT 2013


If you *absolutely* must have this, you should make sure you enable
authentication and SPF for your outgoing users. Otherwise, someone
could "bounce" messages off of you to spam a third party.

For example, if I send you a message "from"
thirdparty at someonelseesserver.com "to" jonas at vrt.dk and you determine
it's spam, it'll be bounced "to" thirdparty at someoneelsesserver.com.

Also if I send a message purporting to be "from" jonas at vrt.dk "to"
jonas at vrt.dk it'll get to you anyways, since it'll be "bounced" to
you, even if *I* was the one who actually sent it.

If you do all of this you can change:
Spam Actions = deliver header "X-Spam-Status: Yes"
to
Spam Actions = bounce

... knowing that you're setting yourself up to be blacklisted if
anything fails. If you do it at the SMTP transaction level (which
you've stated you don't want to do) the responsibility falls upon the
sender. If you do it *after the fact*, it becomes *your*
responsibility.

On Tue, Feb 19, 2013 at 3:39 AM, Jonas Akrouh Larsen <jonas at vrt.dk> wrote:
> Hi all
>
>
>
> I’ve recently setup my MS setup to act as an outgoing smarthost filter as
> well as scanning incoming mails.
>
>
>
> However I’ve run into a problem. Obviously I would like the outgoing mails
> to be both spam and virus scanned no issue there, they are by default.
>
>
>
> However big difference in how I want mailscanner to react depending on if a
> mail is incoming or outgoing.
>
>
>
> I would prefer to simply bounce the email if it is considered spam. This is
> allowed for normal scoring spam but not for high scoring spam.
>
>
>
> Somebody tried to make an argument for it a couple of years ago on the list,
> but it seems nobody really understood what he wanted to do, but simply kept
> on with the “never bounce spam”
>
>
>
> Since quarantining or deleting outgoing mail without ever letting the sender
> know makes no sense to me, im curious as to what tohers are doing?
>
>
>
> Are you simply whitelisting all outgoing mail?
>
> Only virus scanning it, but not spam scanning it?
>
> Maybe you are spam scanning it but with a much higher score limit?
>
>
>
> Since we can’t scan at smtp time, I see no other good reason than to bounce
> the spam back to the user, WHEN ITS OUTGOING.
>
>
>
> This means this is only for internal users, hence I don’t see how the normal
> policy about not bouncing spam applies.
>
>
>
> Also it’s a bit weird that its allowed for normal scoring spam and not high
> scoring.
>
>
>
> Hope somebody have some insights to share J
>
>
>
>
>
> Med venlig hilsen / Best regards
>
>
>
> Jonas Akrouh Larsen
>
>
>
> TechBiz ApS
>
> Laplandsgade 4, 2. sal
>
> 2300 København S
>
>
>
> Office: 7020 0979
>
> Direct: 3336 9974
>
> Mobile: 5120 1096
>
> Fax:    7020 0978
>
> Web: www.techbiz.dk
>
>
>
>
>
>
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
>



-- 

--

Alex Neuman van der Hans
Reliant Technologies / Vida Digital
http://vidadigital.com.pa/

+507-6781-9505
+507-832-6725
+1-440-253-9789 (USA)

Follow @AlexNeuman on Twitter
http://facebook.com/vidadigital


-- So-called "legal disclaimers" are not legally binding, so don't
bother. A cute graphic saying "save the planet, don't print this" can
potentially create more CO2, not less, so don't bother either.


More information about the MailScanner mailing list