Reducing spam

Written by Jane Atkinson on . Posted in Documentation

Website anti-spam settings

FreeToastHost already has spam protection built in. If you're happy with the way it's currently working, you don't need to do anything.

This tab allows you to fine-tune the settings in case the defaults aren't working for your club.

 

White list

You can enter email addresses here that are allowed to send to groups that ordinary members can send to. You may want to add your club coach or club mentor to this list, for example.

You can also enter email addresses here that are "exceptions" to the Email Black List or the Crowd-Sourced Black List. For example, if you enter "This email address is being protected from spambots. You need JavaScript enabled to view it." in the Email White List, and "@baddomain.com" in the Email Black List, every email received from "baddomain.com" would be blocked, except those from "This email address is being protected from spambots. You need JavaScript enabled to view it.".

Enter each name or domain, separated by commas, and save.

Email white and black list settings

Black list

If you are getting unwanted emails from just a few places or people, you can put the names in this list.

They can be specific email addresses, or whole domains. Entering a whole domain in a blacklist will stop email from anyone whose email address ends with that domain. For example, it will block This email address is being protected from spambots. You need JavaScript enabled to view it., This email address is being protected from spambots. You need JavaScript enabled to view it. and everyone else from bannedaddress.com That applies even if one of those addresses is in the white list.

Enter each name or domain, separated by commas, and save.

 

Use "Crowd-sourced" Email Blacklist

Using this option checks your email sender addresses against the blacklists of all other clubs and districts using the system (the "crowd").

It is enabled by default. Uncheck the box if you don't wish to use it.

Two points to note:

  • Mail may take slightly longer to be processed
  • If you're likely to get legitimate emails from some of the blacklisted sites, you may want to add them to the Email White List (see above). Notifications from social media sites would be an example.

To determine if an email address or domain has been blacklisted via the "Crowd-sourced" blacklist, click on the "Search Crowd-Sourced Black List" button. The screen excerpts below give some examples of how this works. This search can help you to determine which email addresses you wish to receive email from are black listed by some club or district in the "crowd", and may need to be included in your Email White List.

 

Add "Is this SPAM?" links to publicly accessible email addresses

Add Is this SPAM links to emails

If you check this option, all emails sent to publicly-accessible email aliases will acquire a "Is this SPAM?" link at the bottom.

This makes it a lot easier to add addresses to the club blacklist, as it can sometimes be difficult to decide where a spam email actually originates from.

A notification will be sent to the site admin, who can check that the link hasn't been added by mistake (because of a misdirected click or other reason).

If you choose not to check the link, you will need to use the method below to determine where an email has originated.

How can you tell where a spam email comes from?

Emails may appear to come from This email address is being protected from spambots. You need JavaScript enabled to view it., which of course you can't blacklist. However, they really come from somewhere else, which is the address you want to include in your blacklist.

To determine this address, click on the "reply" button (BUT DO NOT SEND) and the spammer's address will appear in the address bar. Copy this address and add it to your blacklist. Then close the email reply without saving or sending.

 

Anti-Spoofing phrase

This is a phrase that will be attached to emails that come through your FTH website. That is make it clear that a particular email did come via the club site, and not from some other source. Make sure that your members know what it is and why it's there, or it might even have the opposite effect to what's intended!

However, be aware that it doesn't guarantee that the content of the message is OK. If a member's email is hacked, for instance, it will still show the phrase.

 

Set anti-spoofing phrase

The choice of the phrase is yours, up to 250 characters long.

 

SpamAssassin setting

SpamAssassin is a spam filtering service that gives email a spam score depending on certain characteristics. The more items associated with spam that it contains, the higher the score will be. These can include Subject lines, a questionable domain of origin, and phrases that you would expect to see in a scam message.

A setting of 5 is the default for FTH, and is also common on other email systems. A lower setting stops more questionable email; a higher setting lets more of it through.

It's not perfect, though, and sometimes legitimate messages get mistaken for spam.

If you are finding that a lot of legitimate emails are getting blocked, you might want to raise the setting a little.

SpamAssassin setting