The policy creation page presents four main headings for anti-spam and anti-virus, content control, email and web traffic. URL filtering comes under the HTTP heading and offers 54 categories to block, allow or leave undefined.
Anti-virus and anti-spyware measures are handled efficiently by Kaspersky which allows you log, reject or quarantine suspect email or web downloads and send notifications to administrators and users. A valuable feature is HTTPS scanning is included as standard and you can allow or deny this traffic at any policy level.
For the best anti-spam performance, the appliance likes to learn about what is acceptable. We used the quickest method by importing a live Outlook inbox from the web interface. Annoyingly, the appliance only supports the mbox format so we had to use Mozilla's Thunderbird to convert the PST file before we could use it.
We then left the appliance filtering live email for a week and saw some impressive results. Overall effectiveness was very good with the appliance scoring a 99.5 per cent success rate. Three spam scores are used to place suspect messages in Definite, Probable and Maybe categories and we saw no false positives with the first two scores.
However, the Maybe score threshold will almost certainly have to be increased as on the default setting we recorded a 38 per cent false positive rate. It's here that the unintuitive web interface gets in the way as these settings are difficult to find.
-
Blackouts in Spain and Portugal could be a cyber attackBoth countries are "paralyzed" by nationwide power outages
-
Cisco takes aim at AI security at RSAC with ServiceNow partnershipNews The companies claim Cisco AI Defense and ServiceNow SecOps will help address new challenges raised by AI
-
LaunchDarkly to "double down" on observability with Highlight acquisitionNews Highlight's observability tools will be integrated into LaunchDarkly's Guarded Releases software deployment service
