请选择 进入手机版 | 继续访问电脑版

技术控

    今日:0| 主题:63447
收藏本版 (1)
最新软件应用技术尽在掌握

[其他] Using Transport Rules to Block Outbound Email to Untrustworthy Domains

[复制链接]
一桥轻雨一伞开 发表于 2016-10-5 15:58:13
301 4
Sometimes a customer will have the need to block their users from sending emails to domain names that they consider untrustworthy . Exchange makes this possible through the use of transport rules, also known as mail flow rules. You can use transport rules in Exchange on-premises as well as Exchange Online.
  In the mail flow section of the Exchange admin center, create a new rule.
   

Using Transport Rules to Block Outbound Email to Untrustworthy Domains

Using Transport Rules to Block Outbound Email to Untrustworthy Domains-1-技术控-that,Email,the,Transport,domain

  Construct a rule that will block email sent from internal senders to external recipients with addresses that match the specific domain name, or a pattern that matches a number of domain names.
   

Using Transport Rules to Block Outbound Email to Untrustworthy Domains

Using Transport Rules to Block Outbound Email to Untrustworthy Domains-2-技术控-that,Email,the,Transport,domain

  Of course, this is just an example that is relevant to current events. Using mail flow rules like this is a fairly heavy-handed approach, and there’s a few risks and caveats to be aware of.
  
       
  • A misconfigured transport rule could easily cause all outbound email for your organization to be rejected. Always test your transport rules in a lab first, and in production you can implement them in test mode for a period of time to assess the impact that they will have.   
  • Blocking based on domain names doesn’t necessarily solve the issue of an untrusted or insecure email provider. In the case of Yahoo, there are many other domain names hosted on Yahoo email servers that a rule such as the example above will not block. And who is to say that a trusted partner’s email system hasn’t been breached by attackers already, or that confidential emails aren’t be accessed by unauthorized parties once they leave your organization.   
  • Domain-based blocking could be easily bypassed by forwarding an email to another address first, such as a Gmail account, and then sending it on to Yahoo from there.   
  • Where does it end? Perhaps there are many other mail services that are just as untrustworthy, but haven’t been discovered or reported yet.  
   If confidentiality of email is the primary concern, consider implementing Information Rights Management instead.
knnliang 发表于 2016-10-6 20:31:17
垃圾内容,路过为证。
回复 支持 反对

使用道具 举报

程文轩 发表于 2016-11-14 07:10:39
最近压力山大啊!
回复 支持 反对

使用道具 举报

鸭子芝 发表于 2016-11-18 09:39:04
楼下的接上
回复 支持 反对

使用道具 举报

d89642995 发表于 2016-11-20 06:53:38
一桥轻雨一伞开是天才,坚定完毕
回复 支持 反对

使用道具 举报

我要投稿

回页顶回复上一篇下一篇回列表
手机版/c.CoLaBug.com ( 粤ICP备05003221号 | 粤公网安备 44010402000842号 )

© 2001-2017 Comsenz Inc.

返回顶部 返回列表