Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 1 subscriber
  • Views 4818 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

What do the commtouch spam levels mean?

swoc
Searching these forums I was able to find that the new anti-spam engine has the following levels:

1) confirmed not spam
2) unknown
3) spam
4) confirmed spam

...but how are they determined? For a wile now, there are number of people who send us perfectly fine emails that are being detected as "Confirmed Spam" How do I stop this madness of false positives?

Thanx


This thread was automatically locked due to age.
Parents
  • 0
    What message do they receive about the rejections?

    There are a lot of reasons this could be happening, so please provide specifics.

    Yours - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Just a guess, but RDNS gets a lot of mail because a lot of domains do not have complete and/or accurate DNS entries.  As Bob mentioned, providing full error messages will help sort it out.
  • 0 in reply to Jack Daniel
    Antispam filter is setup to  "Quarantine" for both "Spam" and "Confirmed Spam". As far as I know, the sending party is not receiving any message back from our system. Are they supposed to?

    Looking at my SMTP log this is all there is:

    reason="as" ("as" means antispam I assume)
    extra="Confirmed"

    /var/log/smtp/2008/10/smtp-2008-10-02.log.gz:2008:10:02-07:22:43 (none) smtpd[29724]: SCANNER[29724]: id="1001" severity="info" sys="SecureMail" sub="smtp" name="email quarantined" srcip="***.***.***.***" from="yyyyy@zzzzz.com" to="******@yyyyy.com" subject="" queueid="0zDS8e-0007kC-01" size="3765009"" reason="as" extra="confirmed"


    I don't use any RDNS or Blacklisting features at the moment as that seemed to have caused problems in the past.

    Thanx for all your help
Reply
  • 0 in reply to Jack Daniel
    Antispam filter is setup to  "Quarantine" for both "Spam" and "Confirmed Spam". As far as I know, the sending party is not receiving any message back from our system. Are they supposed to?

    Looking at my SMTP log this is all there is:

    reason="as" ("as" means antispam I assume)
    extra="Confirmed"

    /var/log/smtp/2008/10/smtp-2008-10-02.log.gz:2008:10:02-07:22:43 (none) smtpd[29724]: SCANNER[29724]: id="1001" severity="info" sys="SecureMail" sub="smtp" name="email quarantined" srcip="***.***.***.***" from="yyyyy@zzzzz.com" to="******@yyyyy.com" subject="" queueid="0zDS8e-0007kC-01" size="3765009"" reason="as" extra="confirmed"


    I don't use any RDNS or Blacklisting features at the moment as that seemed to have caused problems in the past.

    Thanx for all your help
Children
Cookie Information Banner