Releasing quarantined messages from spam quarantine

Article:TECH83035  |  Created: 2005-01-10  |  Updated: 2010-08-26  |  Article URL http://www.symantec.com/docs/TECH83035
Article Type
Technical Solution

Environment

Issue



This page explains how to release quarantined email from the spam quarantine.

Symantec Mail Security for SMTP 4.1 is installed.


Symptoms
Releasing quarantined messages from spam quarantine This page explains how to release quarantined email from the spam quarantine. Symantec Mail Security for SMTP 4.1 is installed.


 


Solution



The spam quarantine contains all messages marked as spam. Some quarantined email is not spam, but misidentified. To release these messages an administrator account is required. When releasing email from quarantine, the message must pass through the Symantec Mail Security program again. A reinsertion key prevents the email from being placed in quarantine again.
<!-- Reuse start -->Each reinsertion key is unique to a spam quarantine server. When an administrator clicks This is not spam, the message is sent to the reinsertion host. Symantec Mail Security for SMTP attempts to match the reinsertion key that the spam quarantine server assigned to the one that is entered in Symantec Mail Security for SMTP. If the keys match, the message bypasses the antispam engines and is delivered to the recipient?s inbox. If the keys do not match, the message is rescanned and redetected as spam. It is then handled according to the disposition settings. <!-- Reuse end -->

What happens to mail that is reinserted?
Reinserted mail is placed in the mail queue of the SMTP reinsertion host specified by the Administrator. Additionally a copy of the mail is sent to the Symantec Logistics and Operations Center for verification.

To configure the SMTP insertion hosts on the Quarantine Server

  1. On the Internet, go to

    http://<QuarantineServer>:41080/brightmail/viewLogin.do

    The default user name is admin. The password is brightmail.
  2. On the Settings tab, in the left pane, under System Settings, click SMTP Insertion Hosts.
  3. In the SMTP Insertion Hosts window, in the Host box, type the IP address of the computer on which Symantec Mail Security for SMTP is installed.
    Symantec Mail Security for SMTP will deliver all messages that are released to the inbox by the quarantine users, send email notification when alerts are generated, and send spam notifications to users.
     
  4. In the Port box, type the port number of the computer on which Symantec Mail Security for SMTP listens.
  5. Click Save.

Note: Please ensure that the IP address of the Spam Quarantine is allowed to relay using the Symantec Mail Security server that is specified as the reinsertion host.


To troubleshoot the reinsertion process
  • Make sure that the reinsertion key on the Symantec Mail Security for SMTP administrative interface matches the entry on the Symantec Brightmail AntiSpam Web interface.
  • Make sure that on the Symantec Mail Security for SMTP administrative interface, under AntiSpam Policy, the boxes for Quarantine host and Port contain the correct IP address and port.
  • Check the Detail report. When a message is reinserted, an event will be logged in the detailed report for SMS for SMTP.


To obtain the reinsertion key
  1. Open the Symantec Brightmail AntiSpam interface by typing the following command in the supported browser.

    http://<QuarantineServer>:41080/brightmail/settings/advanced/editAdvancedSettings.do
     
  2. Click Settings tab.
  3. In the right pane under Global Attributes copy the contents of Reinsertion key box.

 



Legacy ID



2005011009332154


Article URL http://www.symantec.com/docs/TECH83035


Terms of use for this information are found in Legal Notices