Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 39 replies
  • Subscribers 1 subscriber
  • Views 170676 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Email Appliance - Spam still getting through

jadedmia
We are using Sophos Email Appliance (latest patch) and according to Sophos we have everything configured the best way to block spam. Still continuing to recieve spam to users inboxes. Really blatant stuff like free gift cards and things like that. Anyone have any ideas on how to stop it? It seems like since about Febuary 2014 a lot more spam is getting through and being marked in the logs as legitimate. I have checked the allow lists and I don't have anything listed that it could be bypassing the policies.

Any help would be greatly appreciated because it seems to be from Sophos's last correspondence that they are basically unwilling to help any further.

James
:53647


This thread was automatically locked due to age.
Parents
  • 0

    We are still reciving an exorband amount of SPAM in our end users inboxes, most of which is obvious SPAM.  We did get an update on our support request for blocking TLD's.  The instructions provided have worked, and are as follows

    Create new policy under "Additional Policy"

    Under "Select Users" option, choose "Include Sender" tab

    Under "Custom Groups" add **@**.domain_you_wish_to_block (*Note you can add multiple entries)

    This has largely done the job for us, but we are still watching inbound mail and blocking the spammy TLD's.  We do use some judgement on blocking, but it is simpler at this point to shoot first and ask questions later due to the sheer volume of unwanted content coming in.

    It would be nice if Sophos would code in the ablity to use custom DNSBL or SURBL resources, as it would allow the customer to be as agressive as they would like.  Most of the public SURBL's are already updated, and are able to block the content that is coming in, but choosing the list is not a one size fits all solution.

    :55356
Reply
  • 0

    We are still reciving an exorband amount of SPAM in our end users inboxes, most of which is obvious SPAM.  We did get an update on our support request for blocking TLD's.  The instructions provided have worked, and are as follows

    Create new policy under "Additional Policy"

    Under "Select Users" option, choose "Include Sender" tab

    Under "Custom Groups" add **@**.domain_you_wish_to_block (*Note you can add multiple entries)

    This has largely done the job for us, but we are still watching inbound mail and blocking the spammy TLD's.  We do use some judgement on blocking, but it is simpler at this point to shoot first and ask questions later due to the sheer volume of unwanted content coming in.

    It would be nice if Sophos would code in the ablity to use custom DNSBL or SURBL resources, as it would allow the customer to be as agressive as they would like.  Most of the public SURBL's are already updated, and are able to block the content that is coming in, but choosing the list is not a one size fits all solution.

    :55356
Children
No Data
Unfiltered HTML