Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 18 subscribers
  • Views 1580 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Smart Banners in signed e-mails (outbound)

Jonas Stadler

Hello everyone,

Is there a way to prevent smart banners from being removed when sending signed mails? 

Our current problem is, that sophos automatically removes smart banners in signed mails, which of course invalidates the signature (the mails are signed on-premise).

Best Regards,

Jonas



This thread was automatically locked due to age.
Parents
  • 0

    no solution here but I feel you. There should be some SKIP-rules integrated in the Secure Message or Data Control Policy.

    Do not remove banner if mail is signed/encrypted (for those doing SMIME before Central) -> Which I think CAN be dangerous IF 'ALLOW / BLOCK' links are activated in the banners. Recipients can click on those links.

  • 0 in reply to Bud Wiser

    Hi  ,

    I understand the risk with activated Allow/Block in banners when replying to mails. As I understand, "only" impersonation protection and anti-spam are bypassed with an User-Allow, so thats not a big concern. But of course the recipient could also click on block, which would unrecoverable delete the incoming mails. So that would be a solution, but definitely not a good one.

    However, I don't understand the point of Sophos doing the SMIME stuff on there side either, as I can't guarantee the integrity of the mails on their way to Sophos Central.

Reply
  • 0 in reply to Bud Wiser

    Hi  ,

    I understand the risk with activated Allow/Block in banners when replying to mails. As I understand, "only" impersonation protection and anti-spam are bypassed with an User-Allow, so thats not a big concern. But of course the recipient could also click on block, which would unrecoverable delete the incoming mails. So that would be a solution, but definitely not a good one.

    However, I don't understand the point of Sophos doing the SMIME stuff on there side either, as I can't guarantee the integrity of the mails on their way to Sophos Central.

Children
No Data
Unfiltered HTML