Answer
If a message carrying a digital signature is modified when scanned by GFI MailEssentials, the signature and the checksum becomes invalid in the following instances:
- A disclaimer is added when an outgoing digitally signed email is scanned by GFI MailEssentials.
- Part of a digitally signed message is quarantined by GFI MailEssentials and replaced by the notification text.
- The email is quarantined and approved by GFI MailEssentials.
- An HTML mail is sanitized by the HTML threat engine.
- The subject of the email is altered by the anti spam module to reflect the original recipient and the reason for blocking.
- The email is sent to a newsletter or discussion list that is configured in GFI MailEssentials.
- GFI MailEssentials add automatically a X-Header to every email which is identified as spam.
To avoid such situations you can disable the X-Header feature by performing the following steps:
- Open registry editor (regedit.exe)
- Browse to the GFI MailEssentials registry node, which are:
- x86: HKEY_LOCAL_MACHINE\SOFTWARE\GFI\MailEssentials\Antispam
- x64: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\GFI\MailEssentials\Antispam
- In the sub node named 'Config', set the value of 'addmaspamxheader' from '1' to '0'
- Restart the following service:
- x86 - IIS Admin
- x64 - GFI MailEssentials Scan Engine
Notes:
- This x-header is placed in the email when the email is detected as spam, not when it is whitelisted.
- This x-header is inserted in the email so that if GFI Archiver is also installed on the same Microsoft Exchange server, it would identify spam emails and exclude them from archiving.
