A few questions before purchasing

[LaxSlash1993]

Have a few questions relating to the functionallity of the FrontEnd before I get it and install that as well as MailScanner on my server.

- Is there a way to configure more options to be displayed to the end-users as well as maybe take away some? For instance, if I wanted to allow the users to setup an e-mail address to forward all e-mails for their domain (through monitoring/archiving) as well as allow them to enable/disable web-bug protection - or for example, take away their ability to control what happens to spam e-mails, for instance if I wanted it to always go into the quarantine?

- Is there a way to allow domains to setup their own clean e-mail signatures, for example for disclaimers? Or would this possibly tie into my first question?

- I've read two different things while researching... one that outgoing mail is not scanned for spam and one saying that it is. Can I get clarification on this? I want my outgoing e-mail to be scanned from the server as a precaution to protect from user's compromised websites and scripts from sending out spam.

Thanks.

[Sarah]

Have a few questions relating to the functionallity of the FrontEnd before I get it and install that as well as MailScanner on my server.

- Is there a way to configure more options to be displayed to the end-users as well as maybe take away some? For instance, if I wanted to allow the users to setup an e-mail address to forward all e-mails for their domain (through monitoring/archiving) as well as allow them to enable/disable web-bug protection - or for example, take away their ability to control what happens to spam e-mails, for instance if I wanted it to always go into the quarantine?

No, it is not possible with the MailScanner Front-End to add more features or take away features from the cPanel MailScanner Front-End. You can configure mailscanner to not allow cPanel users ANY access to the mailscanner front-end, but that's all.

- Is there a way to allow domains to setup their own clean e-mail signatures, for example for disclaimers? Or would this possibly tie into my first question?

No, this is not possible either. You, as server administrator, can create a ruleset to have different signatures for different domains, but this is not available to cPanel users, only the root user, so you would have to create the signature files and ruleset files for them.

- I've read two different things while researching... one that outgoing mail is not scanned for spam and one saying that it is. Can I get clarification on this? I want my outgoing e-mail to be scanned from the server as a precaution to protect from user's compromised websites and scripts from sending out spam.

MailScanner can be configured to scan outgoing email but we do not recommend or support it, due to the problems it can cause with incorrect usage and false positives. It can scan outbound email for viruses/attachments and this can be disabled or enabled. We use MailScanner for protecting users from incoming spam and dangerous attachments.

There are many other better ways to detect and prevent outgoing spam. Some suggestions:

1) Use a malware detection system such as cxs (ConfigServer eXploit Scanner) to detect exploits that may be used for sending spam, and check any reported files and remove them if necessary.
2) Configure relay tracking in csf, monitor the alerts that are sent when the relay limit is exceeded, and check the reported accounts for vulnerable scripts.
3) If you can get the header of one of the outgoing spams, search the exim log to find out what script is sending the mail.
4) Check this webpage on our site which gives some suggestions for finding spammers on your server:
http://www.configserver.com/free/spammers.html#outbound
5) Set WHM > Tweak Settings > Mail > Max hourly emails per domain to a low figure such as 100 to ensure that thousands of messages are not sent out before you detect it.

Regards,
Sarah