Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revisionBoth sides next revision | ||
public:emai:malware [2021-11-19 08:22] – [Monitoring and filtering agenda] vesely | public:emai:malware [2022-01-17 10:28] – vesely | ||
---|---|---|---|
Line 261: | Line 261: | ||
===== Deepheader analysis ===== | ===== Deepheader analysis ===== | ||
- | //Added subject tag: [Suspicious] [Header | + | //Added subject tag: [Suspicious |
+ | |||
+ | //Added warning text: " | ||
<font inherit/ | <font inherit/ | ||
Line 267: | Line 269: | ||
Deepheader analysis examines the entire message header for spam characteristics. | Deepheader analysis examines the entire message header for spam characteristics. | ||
- | Basically an email has two parts. The body (information sent to recipient) and the header containing metadata (like " | + | More specifally - the deep header scan examines each message and **calculate a __confidence value__ |
- | Recipient can learn a lot about the email history and nature by examining message header. | + | There may be sometimes very subtle difference in the specific |
- | + | ||
- | More specifally - the deep header scan examines each message and calculate a confidence value based on the results of the decision-tree analysis.The higher the calculated confidence value, the more likely the message is really spam. | + | |
Line // | Line // | ||
+ | |||
+ | Basically an email has two parts. The body (information sent to recipient) and the header containing metadata (like " | ||
+ | |||
+ | Recipient can learn a lot about the email history and nature by examining message header. | ||