Welcome to eScan Wikipedia

From eScan Wiki

Anti-Spam

Questa sezione fornisce la descrizione ed i settaggi del modulo Anti-Spam per la scansione dei messaggi spam/ junk.

Contents 1 Descrizione 2 Lo stato nella finestra principale del Centro di Protezione 3 Sezione Configurazioni 4 Reports section 5 Glossario 6 Indice delle Caratteristiche Principali

Descrizione

Il modulo Anti-Spam ha la base la tecnologia NILP (Non Intrusive Learning Pattern) che permette il filtraggio intelligente di tutti i messagi spam.

Lo stato nella finestra principale del Centro di Protezione

Il segno di spunta verde (√) indica che il modulo Anti-Spam è attivo e in esecuzione.

La croce di colore rosso (X) indica che il modulo Anti-Spam non è abilitato ed è fermato.

Sezione Configurazioni

Stato

• Stato modulo Anti-Spam – Lo stato del modulo Anti-Spam verrà visualizzato come Avviato o Disattivato.

• Stato Anti-Phishing – Lo stato del modulo Anti-Phishing verrà visualizzato come Abilitato o Disattivato. (Per informazioni dettagliate consultare la sezione B. Sezione Configurazione Filtro Spam Spam sottostante).

• Azione – Indica l'Azione che verrà pressa sulle email considerate Spam i.e. Metti in Quarantena/Elimina.

Stop / Start – Cliccando su stop / start verrà Disattivato / Avviatothe il modulo Anti Spam.

Impostazioni – Per configurare il modulo Anti-Spam per la scansione delle email cliccate su Impostazioni.

I. Avanzate

A. Sezione Opzioni

1. Invia messaggio originale all'utente (predefinito) - Quando selezionata, il messaggio email (anche se marchiato come SPAM) verrà inoltrato anche nella mailbox dell'utente. Nota: Se l'email è stata marchiata come SPAM, l'email sarà spostata nella cartella SPAM del client di posta elettronica (es. Outlook Express). La cartella SPAM nel client di posta elettronica viene creata da eScan.
2. Controllo disabilitato per le risposte e gli inoltri – Quando abilitata, il modulo Anti-Spam non controllerà più il contenuto delle email di risposta o di quelle inoltrate.
3. Verifica il contenuto delle email in uscita – Quando abilitata, eScan controllerà anche le email in uscita per contenuto riservato.

Pulsanti

a) Frasi – Cliccando su questo pulsante, gli utenti potranno creare una lista di frasi da controllare nel corpo delle email e prendere le azioni adatte es. Mettere in Quarantena / Eliminare l'email.

• Abilita Controllo sul Contenuto – Quando questa opzione è abilitata, il corpo dell'email sarà controllato per qualsiasi parola/frase nell'elenco e, se trovata, l'azione impostata verrà eseguita.

• Elenco permessi specificato dall'utente - Questa opzione mostra le parole/frasi aggiunte e consentite dagli utenti (Color Code - GREEN).

• Elenco bloccati specificato dall'utente - Questa opzione mostra le parole/frasi aggiunte e bloccate dagli utenti (Color Code - RED).

• Parole/Frasi personalizzate disabilitato - Questa opzione mostra le parole/frasi inserite ma disabilitate (escluse dalla scansione) dagli utenti (Color Code - GRAY).

Opzioni visualizzate cliccando col tasto destro del mouse:

• Aggiungi regola: Per aggiungere una parola/frase, cliccate col tasto destro del mouse e selezionate Aggiungi Regola. Aggiungere la parola/frase nella sezione a disposizione e selezionare l'Azione (Metti in Quarantena/Elimina mail) da eseguire sulla mail se la parola/frase è stata trovata nel contenuto dell'email.

• Modifica regola – Selezionare questa opzione per modificare la parola/frase o l'azione da eseguire.

• Abilita regola – Abiliterà la parola/frase per il controllo del contenuto della mail e l'azione impostata verrà eseguita.
• Disabilita regola – Disabiliterà la parola/frase per il controllo del contenuto della mail e nessuna azione verrà eseguita.

• Elenco Permessi – Aggiungerà la parola/frase nell'elenco Permessi per il Controllo Contenuti. White listed word/phrase will not be checked for Email Content Scanning.

• Elenco Bloccati – shall add the listed word/phrase in the Block List for content check. Block listed word/phrase will be checked for Email Content Scanning.

• Trova – this will help to search and locate a word / phrase.

B. Spam Filter Configuration Section

1. Check for Mail Phishing – This option when enabled will check for fraudulent emails and will be quarantined.
2. Treat Mails with Chinese / Korean character set as SPAM - This option when enabled will scan emails with Chinese / Korean characters. This check is based on our research done on various spam email samples collected world wide, wherein it is observed that spammers do use Chinese / Korean characters in their emails.
3. Treat Subject with more than 5 whitespaces as SPAM – This option when enabled will check if "spacing" between characters / words in the subject of emails. This is also as per our research and studies on various types of spam emails.
4. Check content of HTML mails – This option when enabled will scan emails in HTML format along with Text.
5. Quaranting Advertisement mails – This option when enabled, will check for advertisement types of emails and will be quarantined.

Button

Advanced (Advanced Spam Filtering options) – For advance setting in Spam Filter Configuration click on the Advanced button.

1. Enable Non Intrusive Learning Pattern (NILP) check – Non Intrusive Learning Pattern (NILP) is an advanced Bayesian Filtering method with the intelligence to analyze each mail according to the Behavioral Patterns of the user and comes with a self learning capability. It is one of the component of the Anti-Spam Module that helps prevent spam emails from reaching the user’s mailbox/inbox.
2. Enable eMail Header check – This option when enabled, will check the validity of certain generic fields like From id, To id, CC id.
3. Enable X-Spam Rules check – This option when enabled, will check the contents in the body of the email as per defined in the database of eScan. The database contains a list of words / phrases each assigned a score / threshold. This database will referred and accordingly action on the email will be taken.
4. Enable Sender Policy Framework (SPF) check – This option when enabled will check the SPF record of the sender domain. (This option, when enabled, requires direct internet connection).
5. Enable Spam URI Realtime Blacklist (SURBL) check – This option when enabled, will check the URL’s in the message body of an email. If the URL is listed in the SURBL site, the email will be blocked from being downloaded..(This option, when enabled it is recommended to have a direct internet connection).
6. Enable Realtime Blackhole List (RBL) check – This option when enabled, will check the senders IP address in the RBL sites. If the sender ip address is blacklisted in the RBL site, the email will be blocked from being downloaded.(This option when enabled it is recommended to have a direct internet connection).
7. RBL Servers - This contains a list of servers / sites which maintains a list of Spammers details and can be changed as per one’s requirement (add / delete).
8. Auto Spam Whitelist – This contains a list of valid email addresses which can bypass the above Spam filtering options. Thus allowing emails from the whitelisted are allowed to download to the recipient’s inbox.

C. Mail Tagging Options –

1. Do not change email at all – This option when enabled will not add Spam Tag to the email, identified as Spam
2. Both subject and body is changed. [Spam] tag is added in Subject. Actual spam content is embedded in Body – This option when enabled will add a Spam Tag in the Subject and the Body of email identified as Spam. This helps to identify the Spam emails.
3. "X-Mailscan Spam: 1" header line is added. Actual spam content is embedded in Body – This option when enabled will add a Spam Tag in the Body of the email identified as Spam and a header line is added to the email
4. Only [Spam] tag is added in Subject. Body is left unchanged – This option when enabled will add the Spam Tag only in the Subject of the email identified as Spam.
5. "X-Mailscan-Spam: 1" header line is added. Body and subject both remain unchanged - This option when enabled will add a header line to the email but no tag is added to the Subject or body of the email.

II. Disclaimer

The disclaimer is a footer or signature that gets added /appended to all emails. The disclaimer can be added in the space provided.

(a) Add Disclaimer to Outgoing emails - This option when enabled adds the disclaimer to all outgoing emails and as a result the recipient is made aware that the email received is scanned and virus free.

(b) Add Disclaimer to Incoming emails - This option when enabled adds the disclaimer to all incoming emails and as a result the recipient is made aware that the email received is scanned and virus free.

(c) Outgoing mails excluded from adding disclaimer – This option is activated /enabled when the option (a) is enabled. Using this option, the disclaimer is restricted from being added /appended to certain or specific email addresses or domains.

Notification Setting button – To configure the eScan Warning Notification Settings on actions taken on the emails click on the Notification button.

• Virus Alerts section – Selecting the Alert Dialog-box will pop-up an alert window displaying the action taken on a particular email.

• Warning Mails section – This contains a predefined Notifications which will be sent either to the recipient.

1. Attachment Removed Warning to Sender – When selected a notification email will be sent to the sender of the email informing about the Attachment removed by eScan attached in the email.
2. Attachment Removed Warning to Recepient – When selected a notification email will be sent to the recepient of the email informing about the Attachment removed by eScan attached in the email.
3. Virus Warning to Sender – When selected a notification email will be sent to the sender of the email informing about the virus in the email and the action taken by eScan.
4. Virus Warning to Recepient – When selected a notification email will be sent to the recepient of the email informing about the virus in the email and the action taken by eScan.
5. Content Warning to Sender – When selected a notification email will be sent to the Sender of the email informing about the email sent has been considered as SPAM and has been quarantined at the recipient end.
6. Content Warning to Recepient – When selected a notification email will be sent to the recepeint of the email informing about the email sent has been considered as SPAM and has been quarantined.

• Delete Mails From User section – If any email from a particular sender or a domain has to be banned or not allowed to be downloaded, can be listed in this section. For eg. xyz@domain.com (for a single sender) or *@domain.com (for an entire domain).

Reports section

Statistics

Total Quarantined Mails – Shows the total number of emails Quarantined.

Total Clear Mails – Shows the total number of clean emails received and delivered.

a. View Quarantined Mails – This displays all the emails that have been quarantined (i.e. marked as spam) by eScan for any of the defined rules /policies in eScan.

Buttons

• Refresh – Clicking on this button refreshes the View Quarantined Mails Window.
• Stop – Clicking on this button stops the current process if started - for example – searching for a quarantined email.
• View – Clicking on this button will open the email and can be viewed.
• Find – Clicking on this button will search for a specific quarantined email.
• Delete – Clicking on this button will permanently delete the selected quarantined email.
• Message Source – Clicking on this button will provide more detail of the quarantined email like the Sender id, Sender IP address, etc…
• Hide emails – Clicking on this option will hide the quarantined emails.

Other Options –

• Subfolder Also – Selecting this option will show all the quarantined emails received on the current day including those received on the previous days.
• Show Attachment (s) – Selecting this option will show the attachment in the list.
• Open email(s) with MailClient – Selecting this option, the quarantined email can be opened / viewed using the default mail-client, for eg. Outlook Express, Microsoft Outlook. If this option is unchecked, then the email can be viewed using the eScan mail viewer.
• Show Only Hidden eMails – Selecting this option will only display the hidden emails.
• Show Only Unhidden eMails - Selecting this option will only display the unhidden emails.
• Show all eMails – Selecting this option will display all the email including hidden emails.
• Add Sender’s eMail-ID to White List - This option is accessible when right clicking on a particular email. Clicking on this option will add the email-id of the sender in the eScan white list. When next time the email is received from the whitelisted sender id, will not be quarantined and delivered to the recepient.

b. View Ham Mails - This displays all the emails that have not been quarantined (not marked as spam) by eScan.

Buttons

• Refresh – Clicking on this button refreshes the View Ham Mails Window.
• Stop – Clicking on this button stops the current process if started - for example – searching for a Ham email.
• View – Clicking on this button will open the email and can be viewed.
• Find – Clicking on this button will search for a specific quarantined email.
• Delete – Clicking on this button will permanently delete the selected quarantined email.
• Message Source – Clicking on this button will provide more detail of the quarantined email like the Sender id, Sender IP address, etc…

Other Options –

• Subfolder Also – Selecting this option will show all the Ham emails received on the current day including those received on the previous days.
• Show Attachment (s) – Selecting this option will show the attachment in the list.
• Open email(s) with MailClient – Selecting this option, the Ham email can be opened / viewed using the default mail-client, for eg. Outlook Express, Microsoft Outlook. If this option is unchecked, then the email can be viewed using the eScan mail viewer.
• Train as Spam - This option is accessible when right clicking on a particular email. Clicking on this option will add the email-id of the sender in the eScan Black list. When next time the email is received from the blacklisted sender id, will be quarantined.

c. View Report – This will display a summary / report of all the emails that has been received (including quarantined and allowed emails).

Glossario

Indice delle Caratteristiche Principali

• Main Page

  • HOME

• Latest Developments

  • Virus - Alerts
  • News
  • Press Releases
  • Event Feeds
  • Marketing
  • Advertisement

• Product Information

  • eScan for Windows
  • MailScan for Windows
  • Nemasis

• Knowledge Base

  • eScan
  • MailScan
  • Technologies
  • Technical Information
  • Security Awareness
  • User Guides
  • eScan Tutorials (Videos)
  • Online Guide for eScan for Windows
  • Online Guide for eScan for Linux
  • Online Guide for eScan for Mac

• For Windows Downloads

  • eScan for Windows ver.22
  • eScan for Windows ver.14
  • eScan for Windows ver.11
  • eScan for Windows ver.10
  • eScan for Windows ver.9
  • MailScan for Windows 7.x
  • MailScan for Windows 6.x
  • MailScan for Windows 5.x
  • Anti-Virus Toolkit
  • Hotfixes
  • Weekly Updates
  • User Guide

• For Linux Downloads

  • Linux Products List
  • Hotfixes
  • User Guide

• For MAC Downloads

  • eScan for Mac
  • Product Documents

• General

  • Beta Testing
  • Release Candidate
  • Glossary
  • Customer Testimonials

• Support

  • eMail
  • Online Chat
  • Telephonic Support
  • Remote Support

Views

• Article
• Discussion
• Edit
• History