IBM AH0QXML User Guide - Page 88

Filing mail with unacceptable body content, Filing e-mail from acceptable addresses and domains

Get IBM AH0QXML - Lotus Domino Messaging PDF manuals and user guides View all IBM AH0QXML manuals
Add to My Manuals
Save this manual to your list of manuals

Page 88 highlights

Filing mail with unacceptable body content To scan the body of incoming e-mail, we choose the rule condition When body contains. This type of rule uses up the most processing power on the server, and should be created with that in mind. Having a lot of rules that scan the body of e-mails can cause server performance problems. It is recommended that you create only a few rules of this type for your mail, so you should be creative in setting them up. By looking at the spam you have received in the past and examining what the body of those e-mails contains, you can come up with some very accurate rules that will catch most of the spam you receive. It is also recommended that you file mail that matches on a scan of the body content unless you are certain your rule is going to catch only spam. Figure 5-7 Body scanning rule In the example in Figure 5-7 we are scanning the body of incoming mail to see if it contains the words unsubscribe and offer. If an e-mail contains both of these words, the rule files it in our Incoming\Suspicious folder. Filing e-mail from acceptable addresses and domains As you develop your mail rules, keep in mind that acceptable addresses and domains might be used by spammers to deceive you into thinking that their spam e-mail is legitimate. You should consider your selection of acceptable addresses and domains carefully. Remember also that public e-mail service domains seem to be the preferred method of spoofing e-mail. Figure 5-8 shows a rule to accept e-mail from specific addresses and domains. Figure 5-8 Acceptable customers and vendors rule In rules for filing e-mail, we recommend that you do not specifically file mail from the domains of public e-mail services. Instead we recommend that you only file e-mail from full e-mail addresses of legitimate senders within those e-mail domains. Be aware that bulk emailers are seldom legitimate business concerns, so they may create spoofed e-mail which appears to come from legitimate 76 Lotus Domino 6 spam Survival Guide for IBM eServer

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
76
Lotus Domino 6 spam Survival Guide for IBM eServer
Filing mail with unacceptable body content
To scan the body of incoming e-mail, we choose the rule condition
When body
contains
. This type of rule uses up the most processing power on the server, and
should be created with that in mind. Having a lot of rules that scan the body of
e-mails can cause server performance problems. It is recommended that you
create only a few rules of this type for your mail, so you should be creative in
setting them up. By looking at the spam you have received in the past and
examining what the body of those e-mails contains, you can come up with some
very accurate rules that will catch most of the spam you receive. It is also
recommended that you file mail that matches on a scan of the body content
unless you are certain your rule is going to catch only spam.
Figure 5-7
Body scanning rule
In the example in Figure 5-7 we are scanning the body of incoming mail to see if
it contains the words
unsubscribe
and
offer
. If an e-mail contains both of these
words, the rule files it in our Incoming\Suspicious folder.
Filing e-mail from acceptable addresses and domains
As you develop your mail rules, keep in mind that acceptable addresses and
domains might be used by spammers to deceive you into thinking that their spam
e-mail is legitimate. You should consider your selection of acceptable addresses
and domains carefully. Remember also that public e-mail service domains seem
to be the preferred method of spoofing e-mail.
Figure 5-8 shows a rule to accept e-mail from specific addresses and domains.
Figure 5-8
Acceptable customers and vendors rule
In rules for filing e-mail, we recommend that you
do not
specifically file mail from
the domains of public e-mail services. Instead we recommend that you only file
e-mail from
full e-mail addresses
of legitimate senders within those e-mail
domains. Be aware that bulk emailers are seldom legitimate business concerns,
so they may create spoofed e-mail which appears to come from legitimate