Mass Mail Prevention settings
Expand all | Collapse all
With the help of the Mass Mail Prevention module, you can protect your company mailboxes against mass mail. Mass mail refers to email messages that are generally sent by email marketing services in large numbers by subscription and are not detected as spam. For example, newsletters or marketing emails are detected as mass mail. If you consider messages containing business offers unwanted, they can be optionally treated as mass mail. This module also provides protection from list linking attacks implying multiple registration confirmation messages.
The Mass Mail Prevention module does not scan outgoing messages or messages exchanged within the organization.
When creating a security policy, you can configure protection from mass mail and list linking attacks.
Actions to be taken by the application
In the Action area, specify what the application must do with mass mail:
- Allow through
The message remains unchanged in the user mailbox.
- Move to Junk Email folder
The message is moved from its original folder to the Junk Email folder.
- Tag the subject
You can add a custom tag to the subjects of affected messages. If necessary, change the tag in the entry field under the Tag the subject check box.
Allowlist
In the Allowlist area, configure allowed senders:
Allow messages from the following senders
This option allows you to configure allowed senders. These senders are considered trusted and messages from them are skipped from processing.
To configure allowed senders:
- Select the Allow messages from the following senders check box.
- Click the Select button.
The Sender allowlist window opens.
- Click the Add sender button.
The Add a sender to the allowlist window opens.
- In the Specify a complete email address or a mask entry field, provide an email address or several email addresses that should be added to the allowlist separated by semicolons or line breaks.
If you want to allow several senders at once, you can use masks. For instance, if you specify the *@example.com mask, the allowlist contains all email addresses from the @example.com domain. You can also copy and paste a list of email addresses / masks separated by semicolons or line breaks in the entry field.
- Click Validate.
The provided email addresses / masks are displayed in the list.
If the email addresses / masks are entered incorrectly, they are displayed in the list in a red font, and you must introduce changes to save them.
- Click Save to save the list of provided addresses / masks.
- If you want to delete an email address / mask from the list:
- Click the Delete (
) button next to the email address / mask. - Click Save.
New messages from an allowed sender that Kaspersky Security for Microsoft Office 365 identifies as mass mail remain in the Inbox folder. New messages from an allowed sender that Kaspersky Security for Microsoft Office 365 detects in the Junk Email folder are automatically moved to the Inbox folder.
Optional
In the Optional area, you can enable additional mass mail prevention options:
- Treat business offers as mass mail
This option allows you to automatically treat messages containing business offers as mass mail.
To enable the option:
- Select the Treat business offers as mass mail check box.
- Click Save.
Messages containing business offers will be treated as mass mail in all mailboxes to which the current security policy is applied. To save scheduled business offers, it is recommended to create a separate security policy for specific mailboxes of the users that do not want to receive business offers.
- Delete all registration confirmation messages
This option allows you to enable protection from list linking attacks implying multiple registration confirmation messages.
To enable the option:
- Select the Delete all registration confirmation messages check box.
- Click Save.
Registration confirmation messages will be deleted in all mailboxes to which the current security policy is applied. To prevent deletion of scheduled registration confirmation messages, it is recommended to create a separate security policy for specific mailboxes that might be exposed to list linking attacks.
Page top