New User of MagicSpam for Plesk.
The following samples of emails from our log were allowed to come through even though they are clearly spam. The IP address are not on our whitelist or exempt list.
Please advise
===================================================================================
3/6/2014 12:17EXEMPT[to_whitelist]no209.205.119.8hb1okc3.tyewoollen.comhb1okc3.tyewoollen.comgabrielwilliamson@hb1okc3.tyewoollen.com
3/6/2014 12:19EXEMPT[to_whitelist]no31.220.42.205banana.irc.funkytown.catpulpmonday.us(null)
3/6/2014 12:27EXEMPT[to_whitelist]no209.205.119.12asap3.streetmushroom.comasap3.streetmushroom.comjaydenmorris@asap3.streetmushroom.com
o
3/6/2014 11:16HAMno206.206.92.35bookaddiction.emefleece.combookaddiction.emefleece.comcamiladean@bookaddiction.emefleece.com
3/6/2014 11:25HAMno206.206.92.34amazingrace.capacitycrest.comamazingrace.capacitycrest.comsierratucker@amazingrace.capacitycrest.com
======================================================================================
Why Allowed Through When Clearly Spam
Re: Why Allowed Through When Clearly Spam
Hello Everest,
Without more information it can be difficult for us to properly look at this issue and give a definitive response. But based on what we have available, it would appear that the incoming mail has been added to a global sometype. This is allowing the mail to get through regardless of the content for either the user or globally (Depending on what list they have been added too).
We would recommend reviewing the whitelists of affected accounts and verify that neither the User is added to the exemption list, or the From or IP is added to a whitelist.
Without more information it can be difficult for us to properly look at this issue and give a definitive response. But based on what we have available, it would appear that the incoming mail has been added to a global sometype. This is allowing the mail to get through regardless of the content for either the user or globally (Depending on what list they have been added too).
We would recommend reviewing the whitelists of affected accounts and verify that neither the User is added to the exemption list, or the From or IP is added to a whitelist.
Re: Why Allowed Through When Clearly Spam
After reviewing the logs, I have a couple of questions:
What does the following mean..... EXEMPT[to_whitelist] ?
Does it mean that the email or IP address was added based upon MagicSpams analysis of the email? We have only whitelisted a few (less than 10) email and IP addresses and an awful lot of emails are being identified as EXEMPT[to_whitelist] coming through as valid "Ham".
Is there a way to bulk import email and IP addresses we wish to blacklist? By analyzing the logs we are able to identify Ham that should be blocked.
What does the following mean..... EXEMPT[to_whitelist] ?
Does it mean that the email or IP address was added based upon MagicSpams analysis of the email? We have only whitelisted a few (less than 10) email and IP addresses and an awful lot of emails are being identified as EXEMPT[to_whitelist] coming through as valid "Ham".
Is there a way to bulk import email and IP addresses we wish to blacklist? By analyzing the logs we are able to identify Ham that should be blocked.
Re: Why Allowed Through When Clearly Spam
Thank you for your post.
The EXEMPT[to_whitelist] log entries mean that there are email addresses in the
Exemptions / User Exemptions
list in the MagicSpam panel. Emails sent to the email addresses on the User Exemptions list are exempted from MagicSpam's protection and are logged as "HAM".
Please review the exemptions list and remove entries as needed.
There is no bulk import function for email address or IP address for blacklists. If you continue to receive spam messages that are not blocked by MagicSpam, please email us the logs for further examination. We then should be able to provide you with a solution.
Please let us know you if you have any further questions.
The EXEMPT[to_whitelist] log entries mean that there are email addresses in the
Exemptions / User Exemptions
list in the MagicSpam panel. Emails sent to the email addresses on the User Exemptions list are exempted from MagicSpam's protection and are logged as "HAM".
Please review the exemptions list and remove entries as needed.
There is no bulk import function for email address or IP address for blacklists. If you continue to receive spam messages that are not blocked by MagicSpam, please email us the logs for further examination. We then should be able to provide you with a solution.
Please let us know you if you have any further questions.
Who is online
Users browsing this forum: Bing [Bot] and 20 guests