Kaspersky Lab kaspersky anti-spam 2.0 Manual
CHAPTER 1. KASPERSKY ANTI-
SPAM 2.0 ENTERPRISE
EDITION / ISP EDITION
EDITION / ISP EDITION
Kaspersky Anti-Spam 2.0 Enterprise Edition / ISP Edition
is a software
package that filters incoming e-mail messages in order to protect users against
unsolicited bulk mailings or Spam.
unsolicited bulk mailings or Spam.
Kaspersky Anti-Spam filters incoming e-mail messages received via SMTP
protocol before the messages are delivered to the user's mailbox. Depending on
the rules set by the administrator, Kaspersky Anti-Spam processes messages,
namely, it can deliver a message to the recipient unaltered, block it, generate a
notification on the message rejection, add or change header, etc.
protocol before the messages are delivered to the user's mailbox. Depending on
the rules set by the administrator, Kaspersky Anti-Spam processes messages,
namely, it can deliver a message to the recipient unaltered, block it, generate a
notification on the message rejection, add or change header, etc.
Every incoming e-mail message is checked for attributes characteristic of
unsolicited bulk messages (Spam).
unsolicited bulk messages (Spam).
Firstly
, the program checks all possible attributes of the incoming message:
sender's and recipient’s addresses (envelope), message size and its headers
(including the From and To headers). In particular, the program detects the
following "suspicious" situations:
(including the From and To headers). In particular, the program detects the
following "suspicious" situations:
• presence of the sender's address in the "black list" or its absence in the
"white list";
• presence of the sender's IP address in the "black list" or its absence in the
"white list";
• presence of the sender's IP address in a DNS-based real time black hole
list (RBL);
RBL
(real time black hole list) – is a database of mail server IP
addresses that allow uncontrolled bulk mailings. These mail
servers allow receiving messages from any sender and
forwarding them to any recipient.
If spam is consistently sent from an address, and the
administration of the mail server does not take any preventive
measures, such server may be reported to RBL as a spammer.
The spammer will be included in the database and this make it
possible to automatically deny message delivery from this server.
Some RBL services include free mail services and other "decent"
servers in their databases. This is why their data should be used
servers allow receiving messages from any sender and
forwarding them to any recipient.
If spam is consistently sent from an address, and the
administration of the mail server does not take any preventive
measures, such server may be reported to RBL as a spammer.
The spammer will be included in the database and this make it
possible to automatically deny message delivery from this server.
Some RBL services include free mail services and other "decent"
servers in their databases. This is why their data should be used