Messaging Gateway

 View Only
  • 1.  Spoofing URLs not blocked?!

    Posted Feb 19, 2014 08:25 AM

    We have an issue with SMG 10.5.1 where spoofed HTML URLs don't get blocked.

    For example:

    <a href="http://www.site1.com/suspectPage.php">http://www.bbc.com/nonsuspiciousPage.htm</a>

    Is there any way to block this? The actual emails themselves seem to pass through with malformed MIME type though, with a 66byte txt attachment.

    These are the emails pretending to come from companies house, if anyones seen them.

    Cheers



  • 2.  RE: Spoofing URLs not blocked?!

    Posted Feb 19, 2014 08:28 AM

    Very interesting. We are in the early planning stages of 10.5.1 upgrade.



  • 3.  RE: Spoofing URLs not blocked?!

    Posted Feb 19, 2014 08:31 AM

    Did it detect these threats before? I'm sure it did...



  • 4.  RE: Spoofing URLs not blocked?!

    Posted May 23, 2014 06:59 AM

    hi;

     

    Are you tried to enable suspious url policy on spam detection.

     



  • 5.  RE: Spoofing URLs not blocked?!

    Posted May 29, 2014 10:40 PM

    Did you fix it?



  • 6.  RE: Spoofing URLs not blocked?!

    Broadcom Employee
    Posted May 30, 2014 11:28 PM

    Hi Sam,

    1.Please make sure that Suspicious URL policy is enabled. 

    2.Protocols>Settings>Advanced 

    MALFORM MIME settings. 

    3. SPAM>Scan Settings> 

    enable Uniform Resource Identifier Reporting

    enable Text-based Attachment Scanning

    4. Protocols>Settings>Content filtering>

    If still not fixed then please contact Symantec Support.