User whitelist and greylisting?

Hello,

We have greylisting activated on our Sophos UTM appliance and it works very well but... it encounters delays to emails (which is the objective, I know it).

We created an exception rules which skips greylisting from some senders and receivers. That means we manage this as administrators.

I know that users have the possibility to manage their own whitelist and blacklist on the user portal.

My question is: if an address x@y.z is set to the user whitelist through the user portal, will greylisting still be active? Or is it skipped since user have added this email in his own whitelist?

Thank you very much.

DeltaSM

  • As to your specific question, I do not know, but it should be easy enough to test.

    But...

    My personal opinion is that users should not be allowed to create whitelist entries.

    Does the quarantine review site provide a user with enough information to make an intelligent whitelist decision?

    Do your users have the training and experience needed to use that information to make a correct decision?

    Does UTM provide the necessary tools to whitelist a legitimate message without also whitelisting some future fraudulent messages?

    I argue that the answer to all three questions is no.   

    Consequently, users should not be allowed to whitelist for the same reason that I am not allowed to do brain surgery.