avoid_spam_issues
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| avoid_spam_issues [2018/05/18 18:46] – [What is the best test procedure with LUCY to identify the source of SPAM issues?] lucy | avoid_spam_issues [2021/12/14 07:04] (current) – ["Deceptive site ahead". What can I do?] lucysecurity | ||
|---|---|---|---|
| Line 176: | Line 176: | ||
| In case you rent a VPS through LUCY Security, we kindly ask you first to contact the the blacklist site and request a de-listing. If you cannot get delisted in a reasonable time, please get in contact with us and we can request an IP address change. | In case you rent a VPS through LUCY Security, we kindly ask you first to contact the the blacklist site and request a de-listing. If you cannot get delisted in a reasonable time, please get in contact with us and we can request an IP address change. | ||
| + | |||
| + | ===== " | ||
| + | {{ : | ||
| + | |||
| + | If you are seeing a message like this, it means that the domain name was blacklisted by Google. | ||
| + | |||
| + | Here are the different methods to resolve the issue (in order of recommendation): | ||
| + | |||
| + | **Option 1.** Perform the Google Whitelisting procedure.\\ | ||
| + | To whitelist the domain please review this article:\\ | ||
| + | [[google_whitelisting|Google Safe Browsing]] | ||
| + | |||
| + | **Option 2.** In case Option 1 doesn’t work, it's advised to choose another template for the Phishing Scenario and try again using the same domain in the scenario settings. | ||
| + | |||
| + | **Option 3.** This option is the extended version of Option 2, but at this point also change the domain in the scenario settings. For the domain configuration please refer to a dedicated article [[domain_configuration|Domain Configuration]]. | ||
| + | |||
| + | **Option 4.** Repeat the recommended steps from Options 2-3 and check the domain status for the existing issues in the search console:\\ | ||
| + | https:// | ||
| + | \\ | ||
| + | Then fix the issue and send the site again for a review confirming that the issues have been eliminated. | ||
| + | Please refer to [[google_whitelisting|Google Safe Browsing]] at this step. | ||
| + | |||
| + | **Option 5.** The fastest and easiest option is to abandon the current domain name and register a new one. | ||
| + | The registration process is described here: | ||
| + | [[domain_configuration|Domain Configuration]]. | ||
| + | |||
| + | **Option 6.** In case if LUCY administration domain got blacklisted, | ||
| + | If access is needed urgently, follow these steps (**WARNING!** This setting is applied globally for the browser!): | ||
| + | - Open Chrome | ||
| + | - Go to Settings > Privacy. | ||
| + | - Toggle off Chrome' | ||
| + | |||
| + | After the actions above, the Deceptive Site message won't appear in your browser and the LUCY administration panel is available again. | ||
| + | |||
| + | You can check if your domain got blacklisted by Google via the link below: | ||
| + | https:// | ||
| + | |||
| ===== Whitelisting in different products ===== | ===== Whitelisting in different products ===== | ||
| **GSuite/ | **GSuite/ | ||
| - | * This is the recommend setting if you do not have a cloud-based spam filter in front of GSuite. | + | |
| - | * Login to https:// | + | Please review [[gsuite_whitelisting|this]] article. |
| - | * Select GSuite. | + | |
| - | * Select Gmail. | + | |
| - | * Select Advanced Settings. | + | |
| - | * In the Organizations section, highlight your Domain (Not an OU). Note: GSuite does not allow whitelisting by IP Address for individual OUs, only the entire domain. | + | |
| - | * In the Email whitelist section, enter the LUCY IP address | + | |
| - | * Scroll to the bottom and click Save. The setting may take up to an hour to propagate to all users. | + | |
| **Office365** | **Office365** | ||
| - | * Log into your Office 365 portal and go to Admin/ | + | |
| - | * Click on Service Settings/ | + | Please review [[o365_whitelisting|this]] article. |
| - | * Click the (+) Create New Rule button under Mail Flow/ | + | |
| - | * Give the rule a name | + | |
| - | * Click on "more options" | + | |
| - | * Add a condition --> " | + | |
| - | * Select "The sender' | + | |
| - | * Add an action --> "Do the following..." | + | |
| - | * Select "Set the spam confidence level (SCL) to...", | + | |
| - | * Click Save | + | |
| - | * If emails with certain attachements get blocked, setup a safe attachement policy: https:// | + | |
| Line 239: | Line 261: | ||
| * The filter list you just created appears on the Filters – Filter Lists pane. | * The filter list you just created appears on the Filters – Filter Lists pane. | ||
| * Click Save. | * Click Save. | ||
| + | |||
| + | |||
| + | **MessageLabs or Symantec** | ||
| + | |||
| + | To add a global Approved Sender: | ||
| + | * Select Services > Email Services > Anti-Spam. | ||
| + | * Ensure that Global Settings is selected in the domains drop-down list. | ||
| + | * Click the Approved Senders tab. | ||
| + | * Click the Add Entry option. | ||
| + | * The Domain/ | ||
| + | * In the Domain/ | ||
| + | * In the Description field, enter brief details about the new entry. | ||
| + | * To add the entry to the list, click Update. | ||
| + | |||
| + | This new policy will allow any inbound mail flow originating from LUCY's IPs to reach your users. | ||
| + | |||
| + | ===== Catenator scripted module ===== | ||
| + | |||
| + | Any LUCY instance can be optionally hardened with the additional scripted module Catenator. | ||
| + | It allows intercepting and redirecting requests that analyze phishing activity, minimizing the chance of LUCY instance to be blocked / blacklisted. | ||
| + | More info [[catenator|here]] | ||
avoid_spam_issues.1526662014.txt.gz · Last modified: 2019/07/25 12:51 (external edit)