User manual

ManualsBrandsAVIRA ManualsSoftwareAntiVir Exchange incl. AntiSpam 1 Year 50 units

141

142

143

144

145

146

147

148

149

150

Criterion Description

Recipient address in body Checks whether the part before the @ of a

recipient address is found in the message body of

the e-mail.

Junk sequence in subject Checks whether the e-mail body contains long

strings of spaces or meaningless character strings.

Emails containing these phrases Checks whether the e-mail body contains words

typically found in spam mail.

Emails containing these concealed words Checks whether the e-mail body contains any

concealed words from the dictionaries specified.

Emails containing suspicious HTML code Checks whether the e-mail body contains any

HTML constructs.

Emails containing suspicious HTML links Checks whether the e-mail body contains any

spammer links.

Many HTML Links Checks whether the e-mail body contains many

HTML links in relation to the size of the text.

Embedded images Can be used to identify spam content conveyed

through embedded images (internal ref. to

attachments). For instance, it is possible that (in

configurations without SPACE) e-mails with

embedded images are systematically considered

spam, unless embedded images are standard

practice for e-mail communication in the

corresponding environment.

5.4.6 Manual Spam Filtering Configuration

To use the Wall Spam Filtering job as described above, you should set up the following

sequence of actions in your job to ensure effective spam blocking:

1. Filtering of known spam addresses.

2. Checking Subject line for text and obvious elements, such as dots or spaces. Also

refer to the Spam Content (Subject) dictionary under Dictionaries in the Basic

Configuration.

3. Checking e-mail body texts for spam links (including redirections and click trackers

). Also refer to the Spam Content (Body) dictionary under Dictionaries in the

Basic Configuration.

4. Checking e-mail bodies for spam text and typical features, such as HTML

comments within an HTML message text. Also refer to the HTML Spam Detector

dictionary under Dictionaries in the Basic Configuration.

To optimize filtering, be sure to set the most efficient Job Processing Sequence .

5.5 Using SPACE for Fighting Spam

SPACE (= Spam and Phishing Advanced Crossplatform Engine) is an interface used for

fighting against Spam and Phishing e-mails. It is used as additional spam criterion in the

advanced AntiVir Wall Spam Filtering job.

The SPACE Engine analyses the emails using the local information stored in its

databases (updated periodically) and several RBL DNS Servers (Realtime Black List).

Avira AntiVir Exchange 7

149