Jump to content


Photo

Barracuda ESS Rule Processing is putting all subscribers at risk.

Content Policies Sender Policies

  • Please log in to reply
No replies to this topic

#1 Danä DeVol

Danä DeVol
  • Members
  • 1 posts

Posted 04 May 2017 - 03:42 PM

The Barracuda ESS rules processing sequence is flawed. A computer virus has been rampant in our local commercial furniture industry for the past couple of weeks. Infected emails with the subject line "Action required: Please Docsign" are spewed out by infected vendors that we work with all the time. Some of those vendors are in Sender Policies as Exempt. I created a content policy to block any e-mail with "Docsign" in the subject line. But ESS rule processing hierarchy bypasses Content Policies if a domain is Exempt. This is a serious flaw that puts all ESS subscribers at immediate and ongoing risk. It is critical that the processing hirearchy causes the Content Policies to be processed for all incoming domains, exempt or not. I have discussed this with two Barracuda Support Engineers and they said many customers have raised  this concern and that they agree that the current processing sequence is dangerous.

 

This is something that Barracuda needs to deal with swiftly. Please acknowledge this matter is being addressed.

 

Thank you.

 

 

Danä DeVol | Director of Information Technology

OpenSquare | Seattle Washington