MailScanner Spam Configuration

MailScanner by default will not delete, filter or forward SPAM out of ones inbox. All SPAM is delivered to the inbox and is labeled as one of the following:


SPAM scores of 5-9 = {Spam?}
SPAM scores of 10+ = {Definitely Spam?}


The settings above are default and can be adjusted on a per domain basis.


Once the email has been identified as SPAM you can configure one of 4 different options. 3 options are listed within the MailScanner Configuration section of your cPanel account and are as follows:


1) Deliver – This is the default and will deliver email to the inbox as noted above.
2) Delete – Deletes the email permanently.
3) Forward to – This option allows you to forward all spam for every email account under the domain to a default spam@domain.com email address. You would need to create an email account called spam@domain.com in cPanel in order to login and retrieve any emails that are SPAM or mistakenly marked as SPAM.


Option 4 would be to filter out emails that are marked as SPAM to a specified folder. To do so you would need to log into cPanel account -> Email Filters (or User Level Filtering) -> Select ‘Manage Filters’ for the specified email account. From here you would click on ‘Create a New Filter’ -> Enter a name for the filter -> Under ‘Rules’ select ‘Subject’ in the drop down menu, then select ‘matches regex’, in the blank box below enter in the following:


^\{Spam\?\}|^\{Definitely Spam\?\}


Then for actions you may set ‘Deliver to folder’ then browse to the folder you wish to direct the SPAM emails to.


MailScanner also tags emails with other names in addition to {Spam} and {Defintely Spam}, most notably {Disarmed} Below is a list of common tags and their descriptions:


{Disarmed} – indicates that the email contained html tags that are considered dangerous, e.g. iframe and form tags
{Virus?} – indicates that the email contained a virus and has had the attachment removed.
{Filename?} – indicates that the email contained a dangerous file attachment which has been removed.
{Fraud?} – indicates the e-mail may be fraudulent or designed to collect personal information from you.
{Spam?} – indicates that the email is likely to be spam – you should filter these emails into a separate folder in your email client.
{Definitely Spam?} – indicates that the email is almost definitely spam because it got a very high detection score – you should filter these emails into a separate folder in your email client.

  • 7 أعضاء وجدوا هذه المقالة مفيدة
هل كانت المقالة مفيدة ؟

مقالات مشابهة

How do I access my email account using Webmail?

You can access your email account directly from Webmail. If you're not the administrator of the...

What is the catchall account?

The "catchall" email account is where all incoming email sent to your domain which isn't...

How to enable Apache SpamAssassin in cPanel?

Apache SpamAssassin is a mail filter that identifies spam. It is an intelligent email filter that...

Can HostRocket customers operate mailing lists?

Yes. Mailing list software can be employed on the webserver so long as the mailings are...

How is Inbound Email Filtered?

Server-LevelThe first level of filtering on inbound mail is server-level; this goes through basic...