[Question] Scan Messages configuration index
Eoin Kim
Eoin.Kim at rcst.com.au
Thu Jul 12 05:07:07 UTC 2018
Thanks Martin,
I’ll play with it a bit and see how it goes. Cheers.
Eoin
From: MailScanner <mailscanner-bounces+eoin.kim=rcst.com.au at lists.mailscanner.info> On Behalf Of Martin Hepworth
Sent: Thursday, 12 July 2018 2:45 PM
To: MailScanner Discussion <mailscanner at lists.mailscanner.info>
Subject: Re: [Question] Scan Messages configuration index
That's correct if you want to scan outbound traffic
On Wed, 11 Jul 2018 at 22:30, Eoin Kim <Eoin.Kim at rcst.com.au<mailto:Eoin.Kim at rcst.com.au>> wrote:
Hi Martin,
Thanks for your response. So, if I understood correctly, I should include all IP addresses of my domain’s mail relays, correct? There is going to be a Microsoft Exchange server sitting behind it, hence, I guess I should register that as well.
Eoin
From: MailScanner <mailscanner-bounces+eoin.kim=rcst.com.au at lists.mailscanner.info<mailto:rcst.com.au at lists.mailscanner.info>> On Behalf Of Martin Hepworth
Sent: Wednesday, 11 July 2018 5:48 PM
To: MailScanner Discussion <mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>>
Subject: Re: [Question] Scan Messages configuration index
Hi
This is probably not the best way to whitelist your domain, as you leave yourself open to domain spoofing attacks on the email - ie spammers pretend to come from mydomain.com<http://mydomain.com>
Best to whitelist by ipaddress
And yes this setting is a big on/off for all scanning not just spam/viruses etc
On Tue, 10 Jul 2018 at 22:56, Eoin Kim <Eoin.Kim at rcst.com.au<mailto:Eoin.Kim at rcst.com.au>> wrote:
Hi all,
I’d like to ask questions regarding MailScanner configuration indexs - Scan Messages. Shortly, what I want to achieve is:
1. Don’t scan messages from my domain.
2. Scan messages from other domains.
So, I set the index like this:
Scan Messages = %rules-dir%/scan.messages.rules
And the rule file is like this:
From: *@mydomain no
FromOrTo: default yes
My first question is, is my rule file going to do the job I want? If so, I’d like to ask the second question. There are a lot of configuration indexes. If message scan is skipped for the messages from my domain, are all those indexes going to be disabled automatically for my domain’s messages?
For example, if I just set like this - Allow IFrame Tags = disarm, does it mean that this is not applied to messages from my domain but is applied to other messages? Or should I still configure it to use a rule file? Sorry for the English, I hope I clearly explained. Thanks a lot.
Eoin Kim
Systems Administrator
RCS Telecommunications
Level 1 – The Annexe, 133 Mary Street
Brisbane, QLD, 4000, Australia
Office: 07 3228 0843
Mobile: 0419 726 231
Email: eoin.kim at rcst.com.au<mailto:eoin.kim at rcst.com.au>
--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
--
--
Martin Hepworth, CISSP
Oxford, UK
--
MailScanner mailing list
mailscanner at lists.mailscanner.info<mailto:mailscanner at lists.mailscanner.info>
http://lists.mailscanner.info/mailman/listinfo/mailscanner
--
--
Martin Hepworth, CISSP
Oxford, UK
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20180712/c4068eab/attachment.html>
More information about the MailScanner
mailing list