Spoof Options
This section explains the options to protect against spoofing.
For most options, you can choose from one of several actions.
|
Action |
Description |
|
Allow |
Passes messages directly to the mailbox without a tag. |
|
Markup |
Forwards messages to the mailbox. When you select this option, a text box displays for entering text. This text is added to the beginning of the subject line of the message. A Subject Tag can be up to 20 characters.
Note: GoSecure recommends enclosing the text with brackets (for example, [ADV]) to denote an email classified as Junk. |
|
Quarantine |
Sends messages to quarantine for review. |
|
Block |
Immediately deletes messages.
Note: Individual mailbox users cannot override this setting. |
Protecting Against Internal Domain Spoofing
These options allow you to configure protection against internal domain spoofing.
|
Option |
Description |
|
Global Protection Check |
Specifies handling for all incoming messages with an envelope or MIME sender address that contains this domain (spoofing). |
|
Sender Exceptions |
Lists exceptions to accommodate email that your domain sends through a service such as SalesForce. These exceptions can be email addresses, an individual IP address, or an IP range in CIDR format. To exempt internal mail from spoof protection add 0.0.0.0/32 to the exception list.
Note: This setting does not display when Global Protection Check is set to Allow. |
|
Smart Protection Check |
Specifies handling for incoming messages that appear to be from this domain, if no mailbox exists.
Note: Mailbox Discovery must be set to Manual to use this option. |
|
Domain Fuzz Check |
Specifies handling for messages coming from domains that are very similar to this one (for example, googel.com instead of google.com). |
|
Domain Fuzz Exceptions |
Lists exceptions for domains of allowed message senders. These exceptions can be domain names only.
Note: This setting does not display when Domain Fuzz Check is set to Allow. |
Sender Policy Framework Options
You can set the following options for Sender Policy Framework (SPF). When you enable the Allow setting of SPF exceptions option in the Personal Dashboard Options section, these options are available. Also, when SPF Envelope Check is set to Allow, the other options do not display.
|
Option |
Description |
|
SPF Envelope Check |
Specifies how to handle messages when the sender is not explicitly authorized by SPF. |
|
SPF MIME Check |
Enables SPF for the sender displayed in the email client. |
|
SPF SoftFail |
Action to take when the sender may not be authorized by SPF. |
|
SPF PermError |
Action to take on a permanent SPF error; for example, a badly formatted SPF record. |
|
No SPF Record |
Action to take when there is no SPF record. |
|
SPF Exceptions |
Sets exceptions for the domain. Enter a domain name in the Forwarding Domain or IP range text box as an individual IP address or an IP range in CIDR format. |
DKIM Options
Use these options to manage Domain Keys Identified Mail (DKIM) for the domain.
|
Option |
Description |
|
Add DKIM Signature |
Adds DKIM signature to all outbound messages. |
|
Selector |
Provides support for multiple DKIM keys for the same domain. |
|
Domain Key |
Displays the current domain key. |
|
Generate New Domain Keys |
Creates new domain keys. |
DMARC Options
Use this option to manage Domain-based Message Authentication, Reporting and Comformance (DMARC). You only see the Exceptions and Policy options when you enable DMARC verification.
|
Option |
Description |
|
Enable DMARC |
Enables the DMARC verification of inbound messages. |
|
DMARC Exceptions |
Specifies any exceptions for the domain. You can enter a domain range, an individual IP address, or an IP range in CIDR format.. |
|
Override DMARC Policy |
Selects the action to take when a message does not pass DMARC verification. |
Display Name Spoofing Option
Use this option to manage messages that contain a sender address and display name pair not found in the approved list. You only see the two options below when Block, Quarantine or Markup are selected as the Action.
|
Option |
Description |
|
Display Name |
Enter the name displayed in the email client |
|
Allowed Senders |
Enter the email addresses for the sender using that display name. |