Thread Info
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 7171 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PureMessage for Unix now detects "OpenPGP/GPG"

Haridoss Sreenivasan

Hi All,

PureMessage for Unix now detects "OpenPGP/GPG" emails as encrypted. This is a new behavior in version 3.72.1 of the Sophos Engine giving customers more flexibility in their rules for handling these messages. Because of this, you may notice PGP emails are being detected and blocked by your policy.

The following checks can detect the OpenPGP/GPG

  • 'pmx_suspect_attachment'
  • 'pmx_attachment_name'
  • 'pmx_attachment_true_filetype'
  • 'pmx_attachment_type'
  • 'pmx_credit_card'
  • 'pmx_phrase'

 If this is not the behavior you are looking for then you will need to create a "cantscan" check and handle the message. This article describes the steps for creating a "cantscan" rule on PureMessage for Unix.

Please refer to the article PureMessage for Unix now detects "OpenPGP/GPG" for more information



This thread was automatically locked due to age.
Parents

  • Hi,

    we came to wonder, whether it applies to pgp signed messages as well (this is what we seem to have observed) and why the article describing that on-by-default feature is published more than a month later than the auto update of the engine? Did we miss some advance notification that we better had been aware of?

    Best regards

    Jens

     

Reply

  • Hi,

    we came to wonder, whether it applies to pgp signed messages as well (this is what we seem to have observed) and why the article describing that on-by-default feature is published more than a month later than the auto update of the engine? Did we miss some advance notification that we better had been aware of?

    Best regards

    Jens

     

Children
Unfiltered HTML