Cisco Cisco Email Security Appliance C680 사용자 가이드
Chapter 6 Using Message Filters to Enforce Email Policies
6-352
Cisco IronPort AsyncOS 7.3 for Email Advanced Configuration Guide
OL-23081-01
The following filter checks all messages created during an authenticated SMTP
session to verify that the addresses in the From header and the Envelope Sender
match the SMTP authenticated user ID. If the addresses and the ID match, the
filter verifies the domain. If they do not match, the appliance quarantines the
message.
session to verify that the addresses in the From header and the Envelope Sender
match the SMTP authenticated user ID. If the addresses and the ID match, the
filter verifies the domain. If they do not match, the appliance quarantines the
message.
someuser@example.com
someuser@example.com
Yes
SomeUser@example.com
someuser@example.com
Yes
SMTP Auth ID
Sieve Char
Comparison Address
Matches?
Msg_Authentication:
if (smtp-auth-id-matches("*Any"))
{
# Always include the original authentication credentials in a
# special header.
insert-header("X-Auth-ID","$SMTPAuthID");
if (smtp-auth-id-matches("*FromAddress", "+") and
smtp-auth-id-matches("*EnvelopeFrom", "+"))
{
# Username matches. Verify the domain
if header('from') != "(?i)@(?:example\\.com|alternate\\.com)"
or
mail-from != "(?i)@(?:example\\.com|alternate\\.com)"
{
# User has specified a domain which cannot be
authenticated