Back to Community Threads
Centralised signature insertion beyond webmail
Problem reported by terry fairbrother - Today at 9:11 AM
Submitted
t
So day 3 of trailing and todays fun is signatures. we use codetwo and has been brilliant as the desktops are in 10 different offices and 130 mailboxes, so having it in one place makes life easier. I can see there's options to add signatures either globally or individually, but these only appear to work when created in webmail.

However, emails generated from Outlook, mobile, etc don't have those signatures attached. So in order for me to move away from Exchange onprem to SM, I have the daunting task of having to log on to each users desktop account, and add their signature to their Outlook. However, they share many mailboxes within each Outlook profile so each Outlook potentially has a minimum of 3 mailboxes, some 6. That's per user. scale that to 110 users, that's a huge amount of signature duplication. Moreover, those using mobiles or tablets are usually stuck with a single text line like 'Sent from a thingy mobile' so having the business signatures inserted means that the receiving user had no idea that the email came from a mobile. Looks professional.

I don't see how hard it would be to insert a signature on the outbound transport, maybe rules can be included such as...

apply signature to...
    new emails only
    fwd and replies
    external only
    internal and external

You already have the core of signatures in place, it (to me), a case of sniffing the outgoing email and applying a rule as needed before waving it bye bye

Having this would be a killer feature

Thanks
D
Douglas Foster Replied
Today at 10:23 AM
Confused.   Why not route from SmarterMail to CodeTwo, just as you currently do from Exchange?
t
terry fairbrother Replied
Today at 12:16 PM
codetwo is installed the server that's being replaced and is an older version. we don't use or want to use an online / subscription version
D
Douglas Foster Replied
Today at 2:56 PM
A useful feature request.   Submit a ticket to be certain that the request is logged to the wish list.   Unlike some vendors, the SmarterMail wish list really does get worked.   Like other vendors, there is no guarantee that your item will ever hit the top of the list.

Doing it  yourself:
To ensure that the closing is applied to both internal and outbound messages, you will need to a custom script during the spam processing phase.   I know that MailsBestFriend.com can provide Declude or Declude Reboot to provide the interface between SmarterMail and your custom script.  I don't know enough about SpamAssassin or rSPAMD to comment whether they could be used in the same way.   Callouts to any of these spam filters will occur before the DKIM signature is applied, so your outbound messages will still authenticate after the message is altered.

I am currently doing message modification using callouts to Declude and Python.   I don't know whether my Python scripts will have acceptable performance in your environment, but I could share the code.   Other toolkis, such as DotNet Core, will provide better performance.

Seems you have two projects (1) replacing Exchange, and (2) replacing CodeTwo.   You will have to decide if they must be done together or can be done separately.
t
terry fairbrother Replied
Today at 3:15 PM
"Seems you have two projects (1) replacing Exchange, and (2) replacing CodeTwo.   You will have to decide if they must be done together or can be done separately."

Technically 3 as we use Kaspersky Anti Spam / Virus too which has a lot of options to filter so virtually nothing ever got to the inbox. The AS here seems a bit more basic than I had hoped, but that's for another day. 

I don't do coding and wouldn't know where to start!!. I will post a ticket and see what happens, or maybe an employee will pop in and see how fantastic this request could be lol
D
Douglas Foster Replied
Today at 7:54 PM
Anti-spam is a topic on which I have strong feelings.

It is no failing that SmarterMail is not an anti-spam solution.  The "post office" function and the anti-spam function are very different product spaces.  For instance, anti-spam needs a daily feed of a large and diverse mail flow.   SmarterTools is not in that business.

Anti-spam should run on an incoming gateway acting as your MX, so it is independent of your "post office" choice.   There are many options, both cloud and on-premises, that can be placed in front of SmarterMail.   The challenge is find a competent product.

The purpose of an anti-spam product is to block unwanted mail and allow wanted mail.    That involves some guesswork and some personal preference.   Therefore, the measure of a good anti-spam solution is not what it knows, but rather whether it gives you the tools you need to define wanted and unwanted mail to a high degree of precision.   It is no flaw that Kaspersky made judgement errors; the flaw is your implication that it could not be tailored to easily correct those errors.

"Unwanted" messages can be broken down into these groups:
  • Malicious messages that nobody wants.   The commercial products should be best at this, although I have my doubts that they actually deliver that much.
  • Messages that are unwanted based on company policy.   Your mail system administrators will be best at this, and the filtering system needs to be able to reflect their wishes.
  • Messages that are unwanted by the recipient.   The person is the best judge of that question, and the "post office" system needs to provide a way for the user to provide that feedback.
SmarterMail has a wonderful solution for user feedback, called the Training folder.   When enabled, anything that a user places into their "Junk Mail" folder is copied to a folder on the server, then removed after an hour.   A couple of integrated products can pick up those files and use it to feed their Bayesian database.   I don't believe in guesswork and I don't have those products.   I copy the message to a folder for review each one manually, deciding whether to block the message source, unsubscribe the user, or ignore the complaint.

My daily routine involves:
  • Checking the quarantine folder for items that should be released.   Filtering rules are adjusted so that the next message with those characteristics will be allowed.
  • Checking the list of messages from unknown senders, for allowed messages that should have been blocked.   Filtering rules are adjusted so that future messages will be blocked, and particularly dangerous messages are removed from the user's mailbox by the impersonation feature available to system managers.
  • Checking the user feedback folder to adjust filtering rules to accommodate user preferences.
I have been very disappointed with the anti-spam products that I have surveyed, and I have looked at a lot.   I still use one commercial product for content filtering, but most of my filtering is based on sender identity, not content.  Maybe some people think you can give big money to Mimecast or ProofPoint, then forget about your spam problems forever.   I don't. 
Back to Community Threads

Reply to Thread

Enter the verification text
Related Knowledge Base Articles
Key SmarterMail MilestonesSmarterMail
Outlook (MAPI) encoding for some types of embedded filesSmarterMail > Desktop and Mobile Synchronization
Reducing ClamAV False PositivesSmarterMail > Troubleshooting
Customizing SmarterMail's Webmail InterfaceSmarterMail > Installation and Configuration
Force Webmail Traffic Over HTTPSSmarterMail > Server Configuration and Management