Manage Learn to apply best practices and optimize your operations.

Email attacks that threaten networks and flood inboxes

2/8

Block spam email before it clutters corporate inboxes

Source:  id-work/iStock
Visual Editor: Sarah Evans

Spam is unsolicited email to a large number of recipients. Admins have a few options to block spam email on Exchange.

Spam uses botnets of compromised systems to email addresses gathered from the Internet or other sources. The spammer uses a command and control system that directs the botnet to send the spam to legitimate email servers.

Depending on the complexity of the email system, IT organizations can filter spam at several places -- starting at the initial SMTP connection using a specialized email appliance or service such as Proofpoint Enterprise Protection, Symantec Email security.cloud or Barracuda Email Security Service -- all the way down to client-side checks in an email client to determine if an email is spam.

The checks for spam include: inspecting a black list; examining for known patterns in the email, like including certain terms, common misspellings; and searching for known signatures in the SMTP connection.

To detect and block spam email sent from unapproved email systems, use Sender Policy Framework (SPF) or DomainKeys Identified Mail (DKIM). SPF and DKIM can be set up to list approved email servers in Domain Name System and for email servers to check DNS if the sending email server is approved.

If you think spam is annoying, check out the next slide on how to prevent email spoofing.

Text by Nick Lewis (CISSP), a Program Manager for Trust and Identity at Internet2.

View All Photo Stories

Join the conversation

1 comment

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

I'd argue that even not spam messages should be filtered to avoid productivity loss. I use a lot of mail rules at work to avoid being disturbed by corporate chain letters and system notifications every minute. For important work period I simply close down all messaging and email apps.
Cancel

-ADS BY GOOGLE

SearchWindowsServer

SearchEnterpriseDesktop

SearchCloudComputing

SearchSQLServer

Close