Symantec BRIGHTMAIL Installation Guide - Page 14
Brightmail Filters, AntiSpam Filters - not blocking spams
 |
UPC - 037648248754
View all Symantec BRIGHTMAIL manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 14 highlights
Symantec Brightmail AntiSpam Overview Brightmail Filters Symantec Brightmail AntiSpam employs the following four major types of filters: • AntiSpam Filters - AntiSpam Filters are created by Symantec using our state-of-theart technologies and strategies to filter and classify email as it enters your site. • Content Filters - Custom content filters are written by you, using the Brightmail Control Center or the Sieve scripting language, to tailor filtering to the needs of your organization. • Blocked and Allowed Senders Lists - You can create lists of blocked senders and allowed senders and you can use third party lists. The lists included in the Brightmail Reputation Service are deployed by default. • AntiVirus Filters - Antivirus definitions and engines provided by Symantec protect your users from email-borne viruses. AntiSpam Filters The nature of spam-and the business implications of false positives-demands a careful and flexible approach to filter creation. Accordingly, Symantec does not use a one-sizefits-all approach to creating filters. Instead, it employs a combination of filtering strategies, based on the specific type of spam. Some technologies perform sophisticated comparisons with the latest spam received by the Probe Network, resulting in matches of unparalleled accuracy. Others are more proactive, attacking future spam based on special characteristics or origination information. Symantec filter types include: • Heuristic Filters • URL Filters • Signature Filters • Header Filters Heuristic Filters - Heuristic Filters scan the headers and the body of a message, applying a variety of tests. These tests search for tell-tale characteristics that are usually inherent in spam, such as opt-out links, specific phrases, and forged headers. Each characteristic is assigned a spam probability, and the message is given a cumulative probability score based on the overall test results. If a certain probability threshold is reached, Symantec Brightmail AntiSpam determines the message to be spam. Using heuristics, Symantec Brightmail AntiSpam software can make the determination that a message is spam, even if it hasn't passed through the Probe Network. The BLOC transmits updated Heuristic Filters as it does other AntiSpam Filters. URL Filters - Symantec's URL Filters catch messages based on specific URLs found in spam. URL-based spam is increasingly pervasive because spammers want to direct readers to a specific Web site for contact information or purchasing instructions. Although the underlying URLs do not change frequently, spammers attempt to obfuscate and disguise them. As a result, these URLs appear to be unique across similar spam messages. 8 Symantec Brightmail AntiSpam™
-
1 -
2
-
3
-
4
-
5
-
6
-
7
-
8
-
9 -
10 -
11 -
12 -
13 -
14 -
15 -
16 -
17 -
18 -
19 -
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152
-
153
-
154
-
155
-
156
-
157
-
158
-
159
-
160
 |
 |
