Server-side virus & spam filteringThe SCS Corvid e-mail system features fully integrated antiSpam and antiVirus processing. These features are provided by "PureMessage," a commercial product from Sophos Corporation that scans all incoming mail for both forms of infection.
- Keywords and phrases
- Identity of the sending site and user
- Presence of attachments and the size of the message
Once the message is tagged with this header, it is delivered to the intended user. At that point, the user can either act on the X-spam-Warning or not. Typically, the user will want to either refile the message into their spam folder or discard it entirely. This can be done either through a Sieve script on the Corvid back end server, or through a mail filter in the e-mail client software.
By default, when SCS Facilities sets up a new Corvid account, we install a Sieve script to refile suspected spam into the user's "SPAM" folder. [Note the uppercase folder name] We strongly encourage users to inspect their spam folder periodically to insure that nonspam messages were not accidentally refiled there and to clean out old, known spam messages. We do not recommend that users automatically delete messages that are spam.
Reporting mistagged mailYou can report spam that gets through PureMessage to: <firstname.lastname@example.org>. Similarly, to submit false positives, send mail erroneously tagged as spam to: <email@example.com>. In either case, send the complete message as an attachment, thereby including all "Received:" headers, so that SophosLabs can analyze your sample.
To forward ("bounce") suspect email:
- From Mozilla Thunderbird:
- Select the spam sample
- From the toolbar, choose "Message" > "Forward as" > "Attachment"
- Add the appropriate address to the recipient list
- Send the email
- From Microsoft Outlook:
- Create a new email message addressed to the appropriate address, given above.
- Drag and drop your email sample from the inbox to the new message
- Send your message
- From other email clients:
- Contact Sophos support before sending your sample
- In general, use the "Forward as Attachment" strategy
By default, messages that have been detected as having a virus are not deleted or refiled, since the viruses have been removed and the messages are no longer dangerous.