ZDNet independently tests and researches products to bring you our best recommendations and advice. When you buy through our links, we may earn a commission.Our process
'ZDNet Recommends': What exactly does it mean?
ZDNet's recommendations are based on many hours of testing, research, and comparison shopping. We gather data from the best available sources, including vendor and retailer listings as well as other relevant and independent reviews sites. And we pore over customer reviews to find out what matters to real people who already own and use the products and services we’re assessing.
When you click through from our site to a retailer and buy a product or service, we may earn affiliate commissions. This helps support our work, but does not affect what we cover or how, and it does not affect the price you pay. Neither ZDNet nor the author are compensated for these independent reviews. Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers.
ZDNet's editorial team writes on behalf of you, our reader. Our goal is to deliver the most accurate information and the most knowledgeable advice possible in order to help you make smarter buying decisions on tech gear and a wide array of products and services. Our editors thoroughly review and fact-check every article to ensure that our content meets the highest standards. If we have made an error or published misleading information, we will correct or clarify the article. If you see inaccuracies in our content, please report the mistake via this form.
<a href="http://www.surfcontrol.com/">SurfControl</a> is a well-established provider of software-based Web and email filtering tools, and the RiskFilter E-mail is the company's first stab at an appliance product. It’s a 1U rack-mount solution, based on an industry-standard Pentium 4 server, running a pre-configured, security hardened, Linux. This, in turn, hosts the SurfControl email antivirus, anti-spam and content filtering tools with a browser-based GUI for management. The RiskFilter E-mail E10 costs £8,500 (ex. VAT) for up to 500 users.
Filter mail in and out
Proxy POP3, IMAP and HTTP servers
Little detail on why messages are blocked
SurfControl is a well-established provider of software-based Web and email filtering tools, and the RiskFilter E-mail is the company's first stab at an appliance product. It’s a 1U rack-mount solution, based on an industry-standard Pentium 4 server, running a pre-configured, security hardened, Linux. This, in turn, hosts the SurfControl email antivirus, anti-spam and content filtering tools with a browser-based GUI for management. The RiskFilter E-mail E10 costs £8,500 (ex. VAT) for up to 500 users.
To install the RiskFilter you have to assign it a name and IP address using a local terminal, and then activate the software licence via the browser-based GUI. You then need to tell the RiskFilter software about your mail server(s). Here the SurfControl appliance acts as a message transfer agent, intercepting incoming messages for one or more domains or given IP addresses, filtering them, and then relaying those that pass onto the appropriate mail servers. This routing can be managed via DNS or by specifying the target servers manually, depending on the number involved.
Outgoing mail can also be filtered for viruses and spam, and disclaimers added if required. The RiskFilter can also be configured as a secure proxy for POP3, IMAP and HTTP client mail access. As with many mail server security appliances, it can be used with any SMTP mail host.
The SurfControl GUI is quite easy to master and, with ready configured default policies included, the RiskFilter appliance can be up and working in just a few minutes. McAfee-based antivirus scanning is turned on for all users; spam trapping, similarly, is enabled out of the box. Both of these facilities can be tuned, if necessary, and custom filtering policies set up to specify things like the level of spam detection to apply and what to do with messages trapped by the virus and spam filters.
There are facilities to either drop or quarantine suspect mail and modify headers and subject lines. Attachments can also be stripped. Usefully, users can be allowed to manage their spam directly, either deleting or releasing quarantined messages when notified via an email list containing the necessary links.
Other useful options include user-managed black/white lists and controls over message size and volumes per connection. There are also facilities to protect against Denial of Service (DoS) and directory attacks while to monitor activity there’s a built-in 'dashboard' display supported by a comprehensive set of reporting modules. These provide good basic summary information, although we'd have liked more information as to exactly why some messages had been blocked to help avoid false positives.