About detecting viruses, malware, and malicious attacks
Viruses and other types of malicious attacks can wreak havoc in an organization. The damage can range from email server crashes to network downtime and the compromise and destruction of company data. Given the damage that can result from viruses and other types of malicious attacks, it is essential to employ virus protection as early in the mail flow process as possible. Virus and malicious threat detection is optional.
Symantec Messaging Gateway detects that an email message is a mass-mailer worm or virus. It can automatically delete the infected email message and any attachments.
Symantec Messaging Gateway detects the email messages that exhibit virus-like signs. It also detects the messages that contain a suspicious new pattern of message flow that involves email message attachments.
Infected files can be intentionally encrypted. Encrypted files cannot be decrypted and scanned without the appropriate decryption tool. You can configure how you want Symantec Messaging Gateway to process encrypted container files.
Adware and spyware
Symantec Messaging Gateway detects the security risks that do any of the following:
Provide unauthorized access to computer systems
Identity theft or fraud by logging keystrokes
Capture email traffic
Harvest personal information, such as passwords and logon identifications
Symantec Messaging Gateway must be able to decompose and scan a container file to detect viruses. You can specify the maximum size and scanning depth levels of container files to reduce your exposure to zip bombs or denial-of-service attacks.