Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 16 subscribers
  • Views 1487 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Outbound abuse e-mail deleted as spam

Fred_B

We received the usual standard spam e-mail through Sophos Email Gateway stating that after visiting a website the local machine was infected and all user activity logged and the camera used to record the user. The only way to prevent releasing compromising bla bla bla.

Normally these e-mails are send from east block domains so an attempt to communicate with the domain owner of the ip is normally useless. In this case it was received from an New Zealand domain. So I fowarded the e-mail to the abuse e-mail of the domain owner asking them to contact their customer. 

Problem is Sophos does not allow me to send that abuse e-mail as according to Sophos it is spam. FFS it was spam when we received it! It should have never been delivered in the first place but why can't we contact the abuse domain owner with that message?

Why are there no settings to control oubound spam messages?



Added tags
[edited by: Raphael Alganes at 9:37 AM (GMT -7) on 30 May 2023]
Parents
  • 0

    Hello Fred,

    Thank you for contacting the Sophos Community.

    Probably at the time you received the score of the email might haven’t reached the score to be considered SPAM. You can open a case if you have the sample to know the score at the time it made it through.

    How are you trying to send the email as an attachment, or just forwarding it?

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos

    Hi Emmanuel,

    The message was forwarded so possibly the score was changed and therefor detected. The email text however was the same standard text going around for years now. The reputation of the sender IP may also have changed. 

    Still our email setting are not applied to outgoing email therefor we cannot release it manually as legit.

    Regards,

    Fred

     

Reply
  • 0 in reply to emmosophos

    Hi Emmanuel,

    The message was forwarded so possibly the score was changed and therefor detected. The email text however was the same standard text going around for years now. The reputation of the sender IP may also have changed. 

    Still our email setting are not applied to outgoing email therefor we cannot release it manually as legit.

    Regards,

    Fred

     

Children
Unfiltered HTML