Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Does Ironport strip existing SPF headers from incomming messages?SANS Diary today had an interesting article by Johannes B. Ullrich, Ph.D. titled "UPS Malware Spam Using Fake SPF Headers". https://isc.sans.edu/forums/diary/UPS+Malware+Spam+Using+Fake...
I have been asked to review Ironport's ability to filter "inappropriate" content in email messages. I am familiar with Ironport's basic source based filtering capabilities based on a sender's reputation as well as its internal dictionaries and "secr...
Is there any way to view the text source of a HTML formatted message in the Centralized SPAM Quarantine?Ironport renders a text view of Quarantined HTML formatted messages. This view does not show underlying link references, only what is displayed t...
David,I also struggled with LDAP groups until I found out you need to use the LDAP fully distinguished name instead of the "simple name" used as examples in our Ironport documentation.eg. Instead of "authorized-LinkedIn-recipients" you need to use "...
