Replying directly to a secure email being sent out by HES using an Encryption Policy will trigger client's/HES User's High Risk Attachment Policy.
Disabling the .htm file type on the high risk attachment policy itself will not be a work around as it will become a vulnerability.
-
To make any reply to an encrypted email pass through HES:
-
Go to Inbound Protection > Policy Objects > Keyword Expressions then click Add.
Click image to enlarge
The Add Keyword Expression Category window will appear.
-
Provide a List name, click Add then Save. In this example, we will use “Secure Reply Bypass”.
Click image to enlarge
The Add Keyword Expression window will appear.
-
In the Add Keyword Expression text box, type the expression “\bzdproxy@privatepost.com\b” then click Save.
Click image to enlarge
-
-
Create a policy for the policy object that was created.
Go to Inbound Protection > Policy then click Add.
Click image to enlarge
The Edit Rule page will appear.
-
On the Basic Information tab:
- Status - tick Enable.
- Name - Enter a Name. In this example the name given is Secure reply Bypass.
- Note - Type any information about the policy. For example: Bypass rule for replying to an encrypted email.
Click image to enlarge
-
On the Recipients and Senders tab:
-
Next, go to Scanning Criteria > Advanced:
-
Tick Specified header matches checkbox then click on keyword expressions on the right side.
Click image to enlarge
The Header Keyword Expressions window will appear.
- On the Header Keyword Expressions window:
- Under Specified header matches select Other, then on the blank field next to it, type "Sender".
- Locate the new policy object from the Available list (In this example, Sender), then click Add to move it on the "Selected" list. Click Save.
Click image to enlarge
-
-
Go to the Actions tab. Under the Intercept section, select Deliver now then click Submit.
Click image to enlarge
-
-
To review the policy, go back to Basic Information tab. The policy should look like this:
Recipients and Senders
If message is
Incoming
to *@sbnabu1.mailsecuritylab.com
AND
from AnyoneScanning Criteria
And message attributes match
Specified Header matches...Actions
Then action is
Deliver nowClick image to enlarge