Re: Outbound spam filtering

[Jesse Thompson <jesse.thompson () DOIT WISC EDU>]

On 01/05/2012 12:23 PM, Crim, David wrote:
> What criteria do you use to filter outbound e-mail?

Occasional false positives will occur, so we rate limit outbound spam 
instead of outright reject it.


> How do you handle NDR reports back to the senders?

We send NDR reports back to webmail users, and smtp users will get an 
error in their client.  These users are always authenticated, so it 
doesn't cause a backscatter problem.

Silently dropping submitted messages from authenticated users with no 
notification is a good way to cause your users to stop trusting your 
service.


> Do you block outbound spam, or is there a quarantine box so potential
> messages can be flagged and later reviewed?

No.  They have to fix their problem and re-send later.


> If so, who does the reviewing, and what is the review process or policy?
>
> Do you have any published policies related to your outbound spam filtering?

https://kb.wisc.edu/page.php?id=3998#authspam

Jesse


> *David Crim*
>
> Security Analyst
>
> Information Technology
>
> 236 West Reade Avenue
>
> Upland, Indiana 46989-0001
>
> Office: 765-998-5167 Cell: 765-251-3370
>
> Fax: 765-998-4640
>
> Description: TaylorEmailNamePlate
>
>
>
> The information in this communication is intended solely for the
> individual or entity to whom it is addressed. It may contain
> confidential or legally privileged information. If you are not the
> intended recipient, any disclosure, copying, distribution or reliance on
> the contents of this information is strictly prohibited, and may be
> unlawful. If you have received this communication in error, please
> notify us immediately by responding to the sender of this email, and
> then delete it from your system. Taylor University is not liable for the
> inaccurate or improper transmission of the information contained in this
> communication or for any delay in its receipt.