Spam filtering

As mentioned on the SMTP checks page, Fastmail performs many checks at the time an email is received to stop spam. While these tests are very effective, they can't stop all spam, and some still enters the Fastmail system. After Fastmail receives the email, we perform a number of checks based on the content of the email to try and determine if the email is spam.

Each message we receive is analysed using SpamAssassin and assigned a spam score: a number that shows how likely the message is to be spam. By default, we consign anything with a score greater than or equal to 5.0 to your Spam folder.

The main types of checks done by SpamAssassin are:

Custom spam protection settings

Spam protection settings can be be controlled on the Settings → Spam Protection screen. Selecting "Custom" gives complete control over at which thresholds messages should be:

You can also specify how to deal with backscatter.

Forwarding hosts

In custom spam-filtering mode, you can specify "Forwarding hosts". This is useful if you have email forwarded to your Fastmail account via another provider you trust. Basically SpamAssassin will, in quite a few cases, only look at the network "edge" where the email came from to our system because you can't trust headers beyond that. In the case of forwarding services, that means the forwarding service itself, which are legitimate trusted servers (e.g., etc.), are checked against RBLs (Realtime Blackhole Lists). That's not really useful and you might end up getting a lot of spam forwarded from them.

By specifying the forwarding services as trusted hosts, we can scan back through them to find out the real source. Internally, we have a list of always-trusted hosts (for common mail providers).

You can add to this list (for your account) by specifying the domain names in the "Forwarding Hosts" field on the Settings → Spam Protection screen in the "Advanced" settings. For instance, you may have an email address at your old university and forward all the email that arrives there to Fastmail, in which case you would want to add the domain of the university to the trusted hosts list. Doing this will allow us to parse back through those forwarding headers to find the true source IP of the message.

Note that being a "trusted" system doesn't mean we don't spam check it, it just means that we parse back through the Received headers to find what server delivered the email to that service, rather than using that services IP.

Trusted hosts

If you have certain hosts you don't want to subject to regular spam filtering, you can "whitelist" them. By adding the domain to your contacts using a wildcard alias (*, all mail coming from that domain will be automatically accepted. By adding this alias to your contacts, you are marking the domain as trusted.

Spam check headers

The Fastmail system adds the following headers to spam checked email.

Note that not all headers may be added on each message. No X-Spam headers are added if the message is not spam checked because: