Thanks, Sean From: Sean Martin [mailto:seanmarti...@gmail.com] Sent: Thursday, September 15, 2011 5:52 PM To: NT System Admin Issues Subject: Re: 3ncrypt3d email solutions
Kim, I've searched high and low for a place to download the Outlook Plug-in from ProofPoint's website, no such luck. I know we're using the "lite" version, which is free, but it was provided to me directly from an engineer that was on-site last year assistance with our migration to version 6.0 on new hardware. You may have to contact your account rep or open a CTS case. As far as the other triggers go, here are the specifics for the e-mail firewall rules that you can create (or possibly modify) within your environment. Encrypt based on Outlook Sensitivity: The condition of your rule simply states "Message attribute "sensitivity" Containts "company-confidential". Apply it to your outbound policy route(s) as necessary and configure the rule to secure the message. Encrypt based on subject trigger: The conditition of your rule states: "Message attribute "Subject" Contains <trigger>. In our case, the trigger is [enc]. Apply to your outbound policy route(s) as necessary and configure the rule to secure the message. It is recommended that under the dispositions, you also change the message headers and add an action to Modify Header (header name = Subject), find value = <trigger> (i.e. \[enc\]. and replace value = blank (effectively deleting the trigger from the header after the message is encrypted - Sean On Thu, Sep 15, 2011 at 8:06 AM, Kim Longenbaugh <k...@colonialsavings.com<mailto:k...@colonialsavings.com>> wrote: Sean, we have not noticed the other triggers you've noted, and as far as I know weren't aware of the Outlook Add-in you mentioned. I'd like the info so I can at least let the bosses know the option exists. Thanks, Kim From: Sean Martin [mailto:seanmarti...@gmail.com<mailto:seanmarti...@gmail.com>] Sent: Thursday, September 15, 2011 10:40 AM To: NT System Admin Issues Subject: Re: 3ncrypt3d email solutions Kim, Thanks for the information. We use ProofPoint as well and although I haven't personally come across that issue, I'll pass it on to our Information Security team. The fact that you had to change the subject of the e-mail is the reason we used a very specific tag, such as [enc]. This prevents unexpected encryption of messages. Are you aware of the other triggers like using the confidential settings within Outlook? There's also a very lightweight Outlook Add-in that adds a "Send Securely" button to the new message form. The buttton simply adds a header to outgoing messages that ProofPoint picks up. Our users seem to prefer that method since it is a single button click to send and encrypt. My only complaint is that the button (in Outlook 2007) is placed directly above the normal Send button. I'd be happy to pass along more information if you're intereted. - Sean On Thu, Sep 15, 2011 at 6:59 AM, Kim Longenbaugh <k...@colonialsavings.com<mailto:k...@colonialsavings.com>> wrote: With proofpoint, if a user puts "encrypt" in the subject line, the email is encrypted. We also have policies that encrypt a message automatically based on policies, like SSNs, PCI info, etc. We ran into a problem recently where a worker emailed a .pdf with a social in it that got sent out un-encrypted. We found out that if the .pdf is an "image", the proofpoint won't see the SSN, it just sees an image. If the .pdf is "searchable", then proof point finds the social and encrypts. At this point, we have to train users to save their .pdfs in the searchable format. Have you had that situation with Zix? PS: the first time I sent this, proofpoint encrypted it (hence the munged subject line this time), and Lyris barfed because it didn't like me sending an attachment to the list... From: pdw1...@hotmail.com<mailto:pdw1...@hotmail.com> [mailto:pdw1...@hotmail.com<mailto:pdw1...@hotmail.com>] Sent: Thursday, September 15, 2011 9:50 AM To: NT System Admin Issues Subject: RE: Encrypted email solutions We also use Zix since we fall under HIPAA (hospital). Zix encrypts based on criteria such as HIPAA, financial (sox) based policies. Users can also force encryption by placing a code word in the Subject line. Small 1U appliance which is pretty easy to setup and maintain (such as backup and upgrades). ________________________________ From: mich...@smithcons.com<mailto:mich...@smithcons.com> To: ntsysadmin@lyris.sunbelt-software.com<mailto:ntsysadmin@lyris.sunbelt-software.com> Subject: RE: Encrypted email solutions Date: Wed, 14 Sep 2011 23:54:36 +0000 I've got a number of customers using Zix and they are quite happy with it. Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com<http://theessentialexchange.com/> From: S Powell [mailto:powe...@gmail.com<mailto:powe...@gmail.com>] Sent: Wednesday, September 14, 2011 5:38 PM To: NT System Admin Issues Subject: Encrypted email solutions I'm starting my research on encrypted email solutions. Right now we are relying on users to sign and encrypt their email that contains protected information. We have TLS set up, only some of our providers use it, and we are looking at other solutions. We're looking at Cisco Iron Port, and McAfee Email Gateway. If you have something that you use what is it and how do you like it? ----------------- Who'd you rather be, the Beatles or the Rolling Stones? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin