This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Confirmed spam for outgoing and incoming mail when mail signature includes image/hyperlink

Hi there,

anybody can confirm that (since yesterday) there is a problem with false "confirmed spam" for outgoing and incoming emails which includes some kind of image/hyperlink as a signature?

Currently two UTMs with Firmware 9.408 and 9.403 and Pattern Version 119508 are doing this kind of stuff.

 

If I delete images and hyperlinks in outlook before sending an e-mail there ist noch problem with sophos spam filter...

Somebody can confirm this?

 

Kind regards

Tobias



This thread was automatically locked due to age.
Parents
  • Hi Tobias,

     

    Running versions below and no such problem.

    Firmware version:
    9.411-3
    Pattern version:
    119513

     

    Are you sure the links and images does not point to something that has been blacklisted ?

     

    Usually "confirmed spam", requires a positive result from an RBL query or content that points to a flagged ip.

  • Hey,

    spammy signatures at two different customers on one day?

    Cannot imagine that...

     

    I have done blacklist test, which was all good.

     

     

Reply Children
  • Hi,

    Yes well, commtouch works a little different  by generating a hash it samples.

    See what Scott writes in this thread :

    That could explain it, but in the spam area on the utm and why - most of the time we guess as there is no deep log telling exactly why :-/

  • As Vels implies, Tobias, please show the SMTP log lines related to one of these cases of false imprisonment. [;)]

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA