The Barracuda ESS rules processing sequence is flawed. A computer virus has been rampant in our local commercial furniture industry for the past couple of weeks. Infected emails with the subject line "Action required: Please Docsign" are spewed out by infected vendors that we work with all the time. Some of those vendors are in Sender Policies as Exempt. I created a content policy to block any e-mail with "Docsign" in the subject line. But ESS rule processing hierarchy bypasses Content Policies if a domain is Exempt. This is a serious flaw that puts all ESS subscribers at immediate and ongoing risk. It is critical that the processing hirearchy causes the Content Policies to be processed for all incoming domains, exempt or not. I have discussed this with two Barracuda Support Engineers and they said many customers have raised this concern and that they agree that the current processing sequence is dangerous.
This is something that Barracuda needs to deal with swiftly. Please acknowledge this matter is being addressed.
Danä DeVol | Director of Information Technology
OpenSquare | Seattle Washington