As mentioned on the SMTP checks page, FastMail performs many checks at the time an email is received to stop spam. While these tests are very effective, they can't stop all spam, and some still enters the FastMail system. After FastMail receives the email, we perform a number of checks based on the content of the email to try and determine if the email is spam.
Each message we receive is analysed using SpamAssasin and assigned a spam score: a number that shows how likely the message is to be spam. By default, we consign anything with a score greater than or equal to 5.0 to your Spam folder.
The main types of checks done by SpamAssassin are:
Spam protection settings can be be controlled on the Advanced → Spam/Virus Protection screen. Selecting "Custom" gives complete control over at which thresholds messages should be:
You can also specify how to deal with backscatter.
In custom spam-filtering mode, you can specify "Trusted hosts". This is useful if you have email forwarded to your FastMail account via another provider you trust. Basically SpamAssassin will, in quite a few cases, only look at the network "edge" where the email came from to our system because you can't trust headers beyond that. In the case of forwarding services, that means the forwarding service itself, which are legitimate trusted servers (e.g. gmail.com, outlook.com etc.), are checked against RBLs. That's not really useful and you might end up getting a lot of spam forwarded from them.
By specifying the forwarding services as trusted hosts, we can scan back through them to find out the real source. Internally, we have a list of always-trusted hosts (for common mail providers).
You can add to this list (for your account) by specifying the domain names in the "Trusted Hosts" field on the Advanced → Spam/Virus Protection screen. For instance, you may have an email address at your old university and forward all the email that arrives there to FastMail, in which case you would want to add the domain of the university to the trusted hosts list. Doing this will allow us to parse back through those forwarding headers to find the true source IP of the message.
Note that being a "trusted" system doesn't mean we don't spam check it, it just means that we parse back through the
Received headers to find what server delivered the email to that service, rather than using that services IP.
The FastMail system adds the following headers to spam checked email.
X-Spam-score— aggregate spam score. A number with 1 decimal place. At "Normal" spam protection level, scores <5.0 are considered not-spam, scores >= 5.0 are considered spam.
X-Spam-hits — shows which SpamAssassin rules were triggered by an email and the score of each rule that hit.
So a header like this:
X-Spam-score: 5.5 X-Spam-hits: BAYES99 3.5, EXTRAMPARTTYPE 1.091, HTMLMESSAGE 0.001, SPAMMY_XMAILER 1
Shows that BAYES99 had a score of 3.5, EXTRAMPART_TYPE a score of 1.091, etc. Adding these all up gives the final score of 5.5 (always rounded to 1 decimal place).
X-Spam-source— information parsed from the
Receivedheaders that shows the calculated source of the message. This may not be the server FastMail received the email from if you have trusted hosts set up.
X-Spam-charsets— character sets found in the message either in message headers, or in the content-type headers for each section of the message.
X-Spam— legacy header present and set to "spam" if a message has a score greater than the threshold score, or "high" if a message has a score twice the threshold score. Do not use.
Note that not all headers may be added on each message. No X-Spam headers are added if the message is not spam checked because: