Secure Email Gateway includes an initial content security policy as a starting point for creating your own corporate policy.
The starter content security policy contains basic policy routes for incoming and outgoing mail, with suggested content rules and policy references already applied.
In addition, this default policy also includes a protection by the SpamLogic feature. SpamLogic provides a global anti-spam defense. You can configure its settings to control how Secure Email Gateway handles spam at the perimeter before it needs to be processed by the Policy Engine.
|
The starter content security policy is designed to provide a template which can be adapted to suit the specific requirements of your organization. We recommend customizing the starter content security policy as soon as possible. This will help your organization enhance its system performance and reduce potential false positives. |
The protection that the starter policy provides
The starter content security policy provides routes and rules for outgoing and incoming mail. It also includes a route that catches messages that do not match the other policy routes.
Outbound messages
Rules for outgoing email are contained within the My Company to Anyone mail policy route. The route has a default disposal action of Deliver, so the message is delivered unless at least one of the applied content rules triggers and specifies a different disposal action.
Show
The following content rules are included in the My Company to Anyone mail policy route.
-
Hold Messages Containing a Virus and Inform the Administrator and Sender
-
Hold Messages Containing Encrypted Files and Inform the Administrator and Sender
-
Hold Messages Containing an Unrecognised Media Type
-
Hold Messages Containing Confidential Terms and Inform the Administrator
-
Hold Messages Over 20mb in Size and Inform the Sender
-
Hold Messages Containing Profanity and Inform the Sender
-
Hold Messages Containing Multimedia Files and Inform the Administrator and Sender
-
Hold Messages Containing Large Images and Inform the Administrator and Sender
-
Add Legal Disclaimer
-
Fail to Modify a Message
-
Detect Malformed Data - Email
-
Fail to Process a Message
Inbound messages
Rules for incoming email are contained within in the Anyone to My Company mail policy route. The policy route has a default disposal action of Deliver, so the message is delivered unless at least one of the applied content rules triggers and specifies a different disposal action.
Show
The following content rules are included in the Anyone to My Company mail policy route.
-
Drop Messages Containing a Virus
-
Hold Messages Containing Encrypted Files and Inform the Recipient
-
Hold Messages Containing an Unrecognised Media Type
-
Hold Messages Containing Executables
-
Hold Messages Containing Class 1 Files
-
Hold Messages Over 20mb in Size and Inform the Recipient
-
Hold Messages Containing Profanity and Inform the Recipient
-
Hold Messages Containing Multimedia Files and Inform the Recipient
-
Hold Messages Containing Large Images and Inform the Recipient
-
Fail to Modify a Message
-
Detect Malformed Data - Email
-
Fail to Process a Message
Rules for messages that are not matched on the other policy routes
Rules for messages that are not matched on the other mail policy routes are contained within the For all email that does not match another route policy route. This policy route is supplied without any applied content rules, so its default disposal action of holding messages in the Misrouted Messages message area is always applied.
| You must ensure you have at least one anti-virus scanner installed and enabled for the security policy to detect viruses. |
View the default lexical expression lists
To find out what terms are contained in the lexical expression lists, such as Confidential Material or PCI terms lists, navigate to Policy > Policy References > Lexical Expressions. The Lexical Expression Lists tab displays the currently available lexical expression lists.