This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ES1100 email applicance and DLP

Hello all,

I'm attempting to implement DLP on an ES1100 appliance, my problem is that it's picking up our email signatures as a CCL violation. Is there anyway to set email signature details as exceptions so that rules don't get triggered by them?

Many thanks

Howard

This thread was automatically locked due to age.

0 JasonWong over 13 years ago

Hello Howard,
What levels did you assign for the DLP protection to trigger for personal information? The rules are based on the number of configured matches that could contain sensitve material.
There is no exclusions for signatures, unless the signature is a banner then you could perhaps add that after the CCL rules otherwise minor tweaking will be required.
Our technical support team will be more than happy to assist if you need help.
:10115
Cancel
Vote Up 0 Vote Down

Cancel
0 howard over 13 years ago

Jason,
Setting the the threshold at 20 but getting a lot of false alerts, often due to the telephone numbers and company addresses in the signatures.
What is your recommended setting for PII ? or how would we go about puttting the signatures after the CLLs
Thanks
Howard
:10117
Cancel
Vote Up 0 Vote Down

Cancel
0 JasonWong over 13 years ago

Hi Howard,
Usually with a value of that quantity you should be ok, however, it depends on the other CCL's in the rule. As for signatures after the CCL rule, you would create a banner rule to all outgoing messages. If the sender has custom phone numbers added it will not be easy to do that. I would recommend you work with one of our engineers to find the right balance of rule triggers.
:10201
Cancel
Vote Up 0 Vote Down

Cancel