Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Mails quarantined multiple times in email Security and data protect

Hello all,

I am currently starting to use Sophos Central Mail. First tests with the end-user quarantine have shown that released mails sometimes end up in the quarantine again after being released by another policy.

Here is the process I am observing:

1. mail (with unscannable attachment) comes in and is scanned
2. email security module quarantines mail because attachment can't be scanned
3. user gets quarantine summary
4. user releases the mail

up to here everything as I expect it but then:

5. data protection module detects the released mail as unscannable and moves it back to quarantine

Maybe I missed the point or it is intentional but my wish is that a deliberately released mail cannot be quarantined by another scan.

Maybe someone can help me.

Many greetings

Added tags
[edited by: Raphael Alganes at 11:13 AM (GMT -7) on 2 Jun 2023]