Specifies whether spam filtering is enabled for the selected domain. Toggle Enable / Disable to switch this option on or off.

When scanning messages for spam, GFI MailSecurity applies various checks to determine an overall spam score for each message. Emails scoring above this threshold are considered as spam. Emails scoring below the threshold is considered legitimate and passed onto the recipient(s)

If you find this setting too aggressive or not aggressive enough, then you can change the threshold.

Action to perform when a message is classified as spam:

• Quarantined: The message is moved to the GFI MailSecurity QuarantineA email database where emails detected as spam and/or malware are stored in a controlled enviornment. Quarantined emails are not a threat to the network. It appears in the recipient's Quarantine Report and may be later released from the quarantine if it is deemed by the user to be a false positive.
• Passed (Tagged): Spam emails will be passed onto the end recipients, but headers are added to the message so that it will be possible to filter messages on the backend mail server and/or on the end-recipients mail client.
• Rejected: The message will be rejected. The message are dropped before they are received by the mail server. Those messages cannot be recovered.

Messages scoring above the specified score is automatically discarded. This option is only available when the action is set to Quarantined.

Specifies if additional headers are added to inbound messages, indicating the result of the spam analysis. The headers added are:

• X-Spam-Status: This shows if the message exceeded the spam threshold and the score that it achieved. It also lists what rules were fired by the anti-spam engine.
• X-Spam-Score: Lists the spam score achieved.

Toggle Enable / Disable to switch this option on or off.

Specifies whether virus filtering is enabled for the selected domain. Toggle Enable / Disable to switch this option on or off.

The action to perform when a message is identified as containing a virus. Refer to the actions documented in the anti-spam section above.

The blocked attachment types are: .vbs, .scr, .pif, .js, flv, .exe, .dll, .com, .cmd, and .bat.

The action to perform when a message is blocked by Attachment Type Filtering:

• Quarantined: The message is moved to the GFI MailSecurity Quarantine. It appears in the recipient's Quarantine Report and may be later released from the quarantine if it is deemed by the user to be a false positive.
• Passed (Tagged): Spam emails will be passed onto the end recipients, but headers are added to the message so that it will be possible to filter messages on the backend mail server and/or on the end-recipients mail client.
• Rejected: The message will be rejected. The message are dropped before they are received by the mail server. Those messages cannot be recovered.

Enable this setting to store all clean messages received by this domain in the history. (Go to Reporting > History to view clean emails.)

Toggle Enable / Disable to switch this option on or off.

This field specifies whether quarantine reports should be generated for recipients in this domain. A quarantine report is generated for each recipient who has at least one email quarantined.

Toggle Enable / Disable to switch this option on or off.

If enabling quarantine reports, select the default report language. Recipients may change the language of their report by logging into GFI MailSecurity and changing their preferences.

If enabling quarantine reports, select the frequency of the reports.

Reports may be generated every day, every weekday (Monday to Friday), every Friday, or every month. Recipients may change the frequency of their reports by logging into GFI MailSecurity and changing their preferences.

If enabling quarantine reports, choose the items to show in the report. Recipients may change this option of their report by logging into GFI MailSecurity and changing their preferences.

The report may include:

• All quarantined items
• New items since last report only
• All quarantined msgs (except viruses)
• New items since last report (except viruses)

Usually, users are only interested in messages that fall just above the spam threshold to look for false positivesLegitimate emails that are incorrectly identified as spam.. Spam messages scoring above a certain threshold can be unequivocally deemed as spam.

If users get a significant amount of spam, then to keep the report size manageable you can exclude spam messages above, for example 30. This setting is set to 999 by default, meaning that no messages is excluded (as a message cannot score that high).