General discussion


best practices for stopping spam

By Jaqui ·
since it's a hot topic.

the absolute best way, that I have found, is to spend the money to purchase high end intrusion prevention systems.
the better quality ones are completely customisable, and do more than anti spam work, they also offer antivirus services.

since the goal is to have the fewest false positives these systems are more effective than simple content / subject filtering.
domain blocking is a guarantee of false positives.
the one I know the most about is Iron Mail.
this appliance uses a multiple scan, with filtering, and content heuristics, on top of the virus scan. it allows blocking of domains completely, as well as allowing all email through to specific addys in your network. administration is apparently 15 minutes a week. ( for a national isp in the us )

seems that this is the quality needed.

if the thousands that this type of solution isn't available, work with filtering, blacklisting and whitelisting, with the expectation of false positives and about an hour a day in administration.

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

A working setup

by In reply to best practices for stoppi ...

I'm using Postfix, ORBS & RBL, reverse domain name verification, sender filtering, strict SMTP RFC compliance and let SpamAssassin take care of the rest. This setup blocks over 80% of all spam with extremely few false positives. SpamAssassin adds its own "spam points" in the headers, which enables users to further sort their email using client filters.
Works like a charm.

Collapse -

Barracuda Networks

by fitzmark In reply to A working setup

If you want a quick, effective fix, barracuda networks makes an appliance that uses all of what was just mentioned plus more, all bundled in an appliance for a couple of grand.

Related Discussions

Related Forums