Forum Discussion
Does Microsoft check Backscatterer?
Hello everyone,
does Micrsoofts EOP (Forefront) Filtering check Backscatterer even the option is "opt-out" in the ASF?
We´re currently observing a problem with a smarthost which sometimes is listed on Backscatterer and receive an SCL from 5. But only if this smart host IP is listed. If not the SCL is 1.
Kind regdards,
6 Replies
Based on the provided information, it seems that Microsoft's EOP (Exchange Online Protection) filtering may not consistently consider Backscatterer listings when determining the Spam Confidence Level (SCL) of emails. This inconsistency in SCL ratings raises concerns about the effectiveness of email filtering in accurately identifying and mitigating spam emails. Further investigation and potential adjustments to the filtering mechanism may be necessary to address this issue and ensure robust email security for users relying on Microsoft EOP.
Microsoft uses various mechanisms to prevent spam, including filtering incoming emails for known spam patterns and blacklisting IP addresses associated with sending spam. Backscatterer is a type of spam that occurs when an email server sends a bounce message to an innocent third party, who never sent the original emailhttps://bossnhacai.com/
To prevent backscatterer spam, Microsoft may use various techniques such as Sender Policy Framework (SPF) and Domain-based Message Authentication, Reporting and Conformance (DMARC) to verify the sender's identity and check whether they are authorized to send emails from that domain. Additionally, Microsoft may use a DNSBL (DNS-based Blackhole List) service that lists IP addresses of known spam sources to block them from sending emails to Microsoft's servers.
Therefore, Microsoft does check for backscatterer and uses various methods to prevent it from reaching their users' inboxes.
- Thank you for shedding light on Microsoft's efforts to combat spam, especially the prevention of backscatterer spam. It's reassuring to know that Microsoft employs robust mechanisms such as SPF, DMARC, and DNSBL services to verify sender identities and block unauthorized emails from reaching users' inboxes. These proactive measures not only enhance email security but also contribute to a smoother and safer user experience. It's evident that Microsoft remains dedicated to maintaining the integrity of its email ecosystem and protecting users from unwanted and potentially harmful spam.
- Here's some information that Microsoft have published https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/anti-spam-backscatter-about?view=o365-worldwide
- This doeesnt really answer my qustion. This I already know. But does Micrsosoft uses or check backscatterer even the option is opt-out in ASF in the EOP Settings of a Microsoft 365 Tenant or not?
- Backscatter protection is part of the edge protection for EXO and not configurable https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/protection-stack-microsoft-defender-for-office365?view=o365-worldwide#phase-1---edge-protection
