Cisco Cisco Email Security Appliance C170 Guía Del Usuario
9-107
User Guide for AsyncOS 9.8 for Cisco Email Security Appliances
Chapter 9 Using Message Filters to Enforce Email Policies
Message Filter Examples
Cisco appliances are not susceptible to these third party relay hacks that are often used to exploit
traditional Sendmail/Qmail systems. As many of these symbols (for example
traditional Sendmail/Qmail systems. As many of these symbols (for example
%
) can be part of a perfectly
legal email address, Cisco appliances will accept these as valid addresses, verify them against the
configured recipient lists, and pass them on to the next internal server. Cisco appliances do not relay
these messages to the world.
configured recipient lists, and pass them on to the next internal server. Cisco appliances do not relay
these messages to the world.
These filters are put in place to protect users who may have open-source MTAs that are misconfigured
to allow relay of these types of messages.
to allow relay of these types of messages.
Note
You can also configure a listener to handle these types of addresses. See
for more information.
Policy Enforcement Filters
•
•
•
•
•
•
•
•
•
•
•
•
Notify Based on Subject Filter
This filter sends notification based on whether the subject contains specific words:
search_for_sensitive_content:
if (Subject == "(?i)plaintiff|lawsuit|judge" ) {
notify ("admin@company.com");
}