How Mail Security detects and processes spam
|Article:HOWTO82486|||||Created: 2012-11-30|||||Updated: 2013-10-28|||||Article URL http://www.symantec.com/docs/HOWTO82486|
When antispam detection is enabled, Mail Security analyzes SMTP email messages for key characteristics of spam. It weighs its findings against characteristics of legitimate email messages.
When you enable antispam detection, Mail Security stamps messages with a spam confidence level (SCL) value when the following conditions are true:
Mail Security determines that the message is spam, suspected spam, or suspected and the message meets an SCL threshold.
Thecheck box is selected.
The SCL Junk E-mail Folder Threshold in Microsoft Exchange works with the SCL value that is stamped on an email message to determine the destination of the message. When the SCL value is not set, Exchange sends all messages with the SCL value to the user's Junk E-mail folder. When the message has a SCL value that is higher than the SCL Junk E-mail Folder Threshold, Exchange sends the message to the user's Junk E-mail folder. If the SCL value is lower than or equal to the SCL Junk E-mail Folder Threshold, the message is routed to the user's Inbox.
Mail Security scans all SMTP messages regardless of the mail flow direction. You can configure your Hub Transport internal SMTP servers to include the IP addresses or range of IP address of your internal servers. Email messages that are sent from these servers bypass whitelisting and spam processing, which enhances scanning performance. See your Microsoft documentation for more information about how to configure the Hub Transport server to designate internal servers.
Article URL http://www.symantec.com/docs/HOWTO82486