Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.
Strangely, if an email address is added to the Admin Allow list and the Bulk action is quarantine, the email still gets quarantine.
Surely if an email address is listed on the Admin Allow list it should skip the Bulk email check, just as it skips the Spam email check?
Hello Stuart James ,
Thank you for reaching out to the community, so if I understood correct you want to an exception for bulk emails from certain senders, right? if that is the case then we already have this a feature request - CEMA-I-304
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Hi everyone!
Please make sure that it is the "SMTP From" address that you have put into the Allow list and not the "Header From"
this is because what really counts is the 'SMTP From' (or Envelope-from) value when it comes to email transaction. The 'Header From' is the "From:" in the body of the email which is very easy to spoof and so if Allow list is based on it instead then there a lot more chances of False Positives.
Here is a screenshot of what I mean:
Hi everyone!
Please make sure that it is the "SMTP From" address that you have put into the Allow list and not the "Header From"
this is because what really counts is the 'SMTP From' (or Envelope-from) value when it comes to email transaction. The 'Header From' is the "From:" in the body of the email which is very easy to spoof and so if Allow list is based on it instead then there a lot more chances of False Positives.
Here is a screenshot of what I mean:
