?
Solved

Symantec Mail Security for Exchange (7.5) - Block PHP Links Unless Whitelisted / Hold Mail and allow to be released

Posted on 2014-12-29
2
Medium Priority
?
409 Views
Last Modified: 2014-12-31
Is it possible to set up a spam filtering rule that will block all emails with PHP links in them unless the email address is whitelisted? Also, can any mail that is blocked be held and reviewed and either deleted/released periodically?
0
Comment
Question by:street9009
2 Comments
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points
ID: 40523276
From the below, it may fall in the "If a message contains suspicious URL content" condition but this does not necessary block all PHP links. in fact, i tend to miss the use case why the need for blocking all PHP as some may be legitimate link too. It may be better for the SPAM engine to score that URL and state the action. The whitelist can still applies as required.
http://www.symantec.com/business/support/index?page=content&id=HOWTO53444#v11832917

There is also mention of content filter to handle spoofed url below besides just suspicious URL check
http://www.symantec.com/connect/forums/spoofing-urls-not-blocked

If there are really missed SPAM messages that bypass the check as false negative then you can also consider "customer-specific spam submissions" whereby messages can be submitted to Symantec
http://www.symantec.com/business/support/index?page=content&id=HOWTO77718#v63987512

But do note the "How rules are created and why messages may not result in custom rules" on the check steps
http://www.symantec.com/business/support/index?page=content&id=HOWTO77736#v66562137
0
 

Author Closing Comment

by:street9009
ID: 40525292
Thank you!
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
Last month Marc Laliberte, WatchGuard’s Senior Threat Analyst, contributed reviewed the three major email authentication anti-phishing technology standards: SPF, DKIM, and DMARC. Learn more in part 2 of the series originally posted in Cyber Defense …
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question