After completing the basic configuration, you can fine-tune your SpamTitan settings to help ensure you are getting as little spam as possible for your environment. Go through the steps below to make sure you have the three essential tests enabled, then look into the type of spam you are getting and the settings that can help reduce it.


Essential tests

Before looking at the types of spam you are receiving, please ensure that the following tests are enabled or operational:


1. Make sure you have added these RBL servers:

  • zen.spamhaus.org
  • psbl.surriel.com
  • truncate.gbudb.net


2. Ensure Botnet Analysis is enabled. 


3. Ensure Network Testing is enabled. 


4. Ensure you are getting accurate DNS responses, which are essential for SpamTitan to maintain a good catch rate.


Do not configure SpamTitan to use free/open DNS servers such as 8.8.8.8. Because of the high volume of DNS requests that originate from free/open DNS, test providers will not respond to DNS requests from these servers. Whenever possible, use your own DNS server. If you do not have your own, consider using your ISP’s DNS server if this is an option.


Run the test outlined in Recommended Additional Configuration to see if you are being blocked.


Reducing different types of spam

Once you have verified that the tests above are operational, see the suggested steps below for how to reduce the type/s of spam you are receiving.


Spoofing

  • If your email domain is being spoofed, enable SPF and DMARC.
  • If the names of users in your organization are being spoofed, enable Anti-spoofing.


Malicious links

If you ran the test in step 3 above and got a positive result, but you are still receiving malicious links, submit a ticket on our Support Portal. Attach examples of the full emails you are receiving, not just the links.


Malicious attachments

  • Go to Reporting > System Information > Services and check that both Clam and Bitdefender are running. 
  • Go to Content Filtering > Viruses > BitDefender Antivirus and enable Sandboxing. 
  • Enable Google Safebrowsing Database and Use Third-party Databases in your Clam AV Settings
  • Use banned attachments if uncommon files. See Configuring Attachment Filters


If you are still receiving malicious attachments after changing these settings, log a ticket with our Support team.


Unsolicited marketing 

Log a ticket with our Support team requesting that additional rules be added to your SpamTitan instance.


Other

If you have checked the essential tests at the top of this page and you are still receiving a high level of spam that does not match the types listed here, consider the following actions:

  • If the spam you are receiving is scoring high, but not high enough to block, consider tuning your spam score. See Editing a Domain Policy and Editing a User Policy.
  • Log a ticket with our Support team and they will help your investigate.