Messaging Gateway

 View Only

  • 1.  directory harvest attack recognition feature

    Posted Nov 24, 2013 09:50 AM

    Hi,

    I have been going through this blog ( https://www-secure.symantec.com/connect/blogs/typoon-haiyan-spammers-strike-dha-attack )  and could not figure out how to configure  directory harvest attack recognition feature.Is it something we need to set in the Symantec Server or the SPAM filter ?

    Here is the brief one liner :

    Symantec advises users to configure directory harvest attack recognition to protect their website environment, and to update their spam filter algorithms to repel such attacks.

    Could you please guide me how to configure this ?

     



  • 2.  RE: directory harvest attack recognition feature

    Posted Nov 24, 2013 09:53 AM

    This is for messaging gateway. you posted this in the antivirus forum.

    I will move it to the correct forum for you



  • 3.  RE: directory harvest attack recognition feature

    Posted Nov 24, 2013 10:27 AM

    ohh sorry .... i thought that is something related to SEP.

    Thank you for posting in the correct forum



  • 4.  RE: directory harvest attack recognition feature

    Posted Nov 24, 2013 07:07 PM

    Hi Suren424,

    Do you have Symantec Email Security.cloud services or Symantec Messaging Gateway (SMG) in your enviroment?

    For .cloud services, directory harvesting attack recognation is build in with "best practice" setting, for better protection, just ensure that "address registration" is turn on, from management portal (clientnet).

    For SMG, Login to your SMG management console, Go to "reputation" icon, go to "Directory Harvest Attack" - Configure directory harvest attack recognition and specify actions to take when a directory harvest attack occurs.

    Cheers,