EveryCloud Technologies    


The Following article will provide a guideline on how to setup the EveryCloud Spam filter. Please read it carefully.


Our Support team are available to help you contact details can be found Here.


Inbound and Outbound email requirements


Please select your region below for specific geographical Information:


European / African / Asian customers


EU Essential Setup Information


North American customers


US Essential Setup Information


Australasian customers


AUS Essential Setup Information


Customer mail server setup guides


We have out together some guides with recommended settings for some of the more common Mails server, please select from the list below:

 


If we do not have your mail server listed or just have any additional questions about the setup of mails server, please contact the support team who will be happy who will be happy to help.

 

Additional Security Note:-


If you have a system in place to deter/prevent directory harvest attacks., it is worth noting that EveryCloud utilises relay checking to automatically add valid users to the spam filter, this means that we may send a lot of emails to invalid addresses which could trigger a directory harvest attack block, this can result in users seeing a delay in their mail delivery.


In this scenario we recommend configuring your directory harvest checking system to ignore mail from the IP ranges listed on your EU onboarding information page



Email Authentication


SPF record


If you intend to send outbound through our service by connecting to our smart-host, we strongly recommend that you construct an SPF/TXT record, which authorises our sending servers to send on behalf of your domain. If you do not authorise our sending relays to send on behalf of your domain, (or add us to an existing SPF record) recipients’ systems may consider that email transitioning outbound through our relays is unsolicited.


EveryCloud Include statement is 'include:spf.everycloudtech.com' If you require more detailed information regarding SPF records please click here.


Inbound SPF checking on inbound email is not performed by default; however, it can be enabled by contacting our support team.


DKIM / DMARC


EveryCloud can offer DKIM and DMARC email authentication services. Please read the following guides for more details:

DKIM signing and validation - https://support.everycloudtech.com/support/solutions/articles/4000126100-domainkeys-identified-mail-dkim-


DMARC checking - https://support.everycloudtech.com/support/solutions/articles/4000126101-domain-based-message-authentication-reporting-conformance-dmarc-



Email Security


Password Security Policy


We strongly advise that a password security policy is implemented. This is to ensure that access to the EveryCloud control panel and associated end user services such as continuity and archiving are kept secure. Password restrictions are enabled at a customer level at Management > Settings > Restrictions. We recommend that a strong password policy is implemented that ensures: -Minimum of 8 characters- Upper case letter in password- Lower case letters in password- Number in password, and special characters


We would also suggest that users be careful when creating any new password and not use any special characters, such as "carriage return" etc. And refrain from copying/pasting any password created elsewhere, as this is a common reason for such rejections.


Additionally, Control Panel access restricted to specific IP address / ranges.




 

 

Important: Service Requirements

 

In order to protect the reputation of our relays and the continuity of service for all our customers, the below actions are defined as a 'service requirement' when sending outbound email through EveryCloud's infrastructure.


Regrettably, failure to comply with the below service requirements may lead to severe IP reputation damage and as such, EveryCloud reserves the right, without notice, to restrict a customer's outbound mail flow through our relays, if it becomes clear, that IP reputation damage has been caused as a direct result of non-compliance with our service requirements.

 

Service requirement (1).


Bulk email / Mail shots / Newsletters


If a customer intends sending bulk emails/mail shots outbound through our relays, it is a stringent service requirement, that email recipients are provided with a clear un-subscribe link/option contained within the body of the email and that the intended recipients have personally subscribed to the mail shot in advance.


Once an email recipient unsubscribes to the mailshot/bulk email, the recipient must be removed from all further mailshot/bulk email correspondence within 24 hours. If your organisation fails to comply with these sending requirements, EveryCloud will impose permanent sending restrictions on your ability to send mail outbound through our platform infrastructure.


In addition, Inbound emails that are sent inbound from clear mass mailing environments which also do not contain a clear unsubscribe link will be treated as info-mail.


Service requirement (2).


Sending spam, viruses or malware outbound. (Important)

Please be aware of this service requirement, as it is important and relevant to any customer sending outbound through our service relays.

If your mail server security has been compromised due to your mail servers security being inadequate (definitions below *) and your compromised mail server sends mass outbound spam , viruses or malware outbound thorough our relays EveryCloud reserve the right to suspend outbound sending and or reject messages from either the infected email address or entire domain.


Definitions of mail server inadequate security, but by no means exhaustive.

  • An unknown or known third party is/was able to connect into your mail server directly and relay spam, viruses or malware outbound through our infrastructure

  • An unknown or known third party is/was able to authenticate with your mail server by any means and was able to send spam, viruses or malware outbound through our infrastructure

  • An unknown or known third party is/was able to guess an end users mailbox password due to the mailbox password being non-complex and was able to relay spam, viruses or malware outbound through our infrastructure


If you haven’t done so yet, you can sign up for a free trial on our website Here  .