Starter content security policy

Secure Exchange Gateway includes an initial content security policy as a starting point for creating your own corporate policy.

The starter content security policy contains basic policy routes for email routed within your organization in addition to incoming and outgoing mail, with suggested content rules and policy references already applied.

 

The starter content security policy is designed to provide a template which can be adapted to suit the specific requirements of your organization.

We recommend customizing the starter content security policy as soon as possible. This will help your organization enhance its system performance and reduce potential false positives.

The protection that the starter policy provides

The starter content security policy provides routes and rules for mail that is routed within your organization via an Exchange Server, and also for mail that is sent and received externally.

Internal mail

Rules for internal mail are contained within the My Company to My Company policy route. The route has a default disposal action of Deliver, so the message is delivered unless at least one of the applied content rules triggers and specifies a different disposal action.

Hold messages containing a virus in the Virus message area, and inform the administrator and sender.
Hold unacceptable images in the ImageLogic message area, and inform the recipient.
Hold messages containing an unrecognized media type in the Unknown Binary message area.
Hold messages over 20Mb in size in the Oversize message area and inform the sender.
Hold messages containing English swear words in the Profanity message area, and inform the sender.
Hold messages containing multimedia files in the Multimedia message area and inform the administrator and sender.
Hold messages containing large images in the Large Images message area, and inform the administrator and sender.
If message modification fails, hold the message in the Message Processing Failure message area.
If message processing fails, hold the message in the Message Processing Failure message area.

Inbound messages

Rules for incoming email are contained within the Anyone to My Company policy route. The policy route has a default disposal action of Deliver, so the message is delivered unless at least one of the applied content rules triggers and specifies a different disposal action.

Drop messages containing a virus.
Hold messages containing encrypted files in the Encrypted message area, and inform the recipients.
Hold messages containing an unrecognized media type in the Unknown Binary message area.
Hold messages containing executable files in the Executables message area.
Hold messages containing Class 1 files in the Executables message area.
Hold messages over 20Mb in size in the Oversize message area and inform the recipients.
Hold messages containing English swear words in the Profanity message area, and inform the recipients.
Hold messages containing multimedia files in the Multimedia message area and inform the administrator and recipients.
Hold messages containing large images in the Large Images message area, and inform the recipients.
If message modification fails, hold the message in the Message Processing Failure message area.
If message processing fails, hold the message in the Message Processing Failure message area.

Rules for messages that are not matched on the other policy routes

Rules for messages that are not matched on the other mail policy routes are contained within the For all email that does not match another route policy route. This policy route is supplied without any applied content rules, so its default disposal action of holding messages in the Misrouted Messages message area is always applied.

  You must ensure you have at least one anti-virus scanner installed and enabled for the security policy to detect viruses.

View the default lexical expression lists

To find out what terms are contained in the lexical expression lists, such as Confidential Material or PCI terms lists, navigate to Policy > Policy References > Lexical Expressions. The Lexical Expression Lists tab displays the currently available lexical expression lists.

See also...