Re: [Declude.JunkMail] Determining a BCC Recipient

[Matt]

Please don't parse my words so carefully.  Each company is different and therefore so are their needs.  Many that archive will never need to go through the data, primarily because many companies aren't so enormous that they have the legal liability nor the volume that would necessitate a preemptive indexing of content.  In such cases, constructing a solution to unzip and index the archives in response to a subpoena would be entirely appropriate, and probably quite simple to do. For more frequent access to such information, one could turn drive compression on in Windows and leave the files in raw format within massive directories and then use Index Server to get maybe a better effect.  I would consider it to be unrealistic to demand that a full text indexing be done of file attachments, so this solution would probably be near perfect.  A little bit of scripting in ASP could get you a search engine capable of identifying files by way of sender, recipient, and/or text, and display the contents of each message in a browser window (decoded even if you wished).  The decoding part would be a fair deal of work.  That's probably how I would approach it. Note that you probably would need to turn WHITELIST AUTH or any IP settings off for the COPYFILE filter to work on internal E-mail.  You could replace this with a credit filter that won't result in disabling actions based on test name, probably one that combines both IP and MAILFROM as matches. Matt Sanford Whiteman wrote: I strongly recommend that you just simply keep these in their Q* and D* formats and zip up the directories every night and write them to a CD or something every so often. Like I keep trying to say, this isn't an "every so often" or best-effort regulation. It's strict and for-real. . . . you can easily write something that would unzip the files, search for addresses in the Q* files, and copy the needed files to a directory when needed. Searches are almost always by keyword, not by user. This is why full-text indexing of body and attachment is a must. And the restrictions on outside auditor access, et al. are too long a list to satisfy here. Just remember that this question relates to SOX, not random measures under the umbrella of archiving. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.mailmage.com/products/software/freeutils/SPAMC32/download/release/ Defuse Dictionary Attacks: Turn Exchange or IMail mailboxes into IMail Aliases! http://www.mailmage.com/products/software/freeutils/exchange2aliases/download/release/ http://www.mailmage.com/products/software/freeutils/ldap2aliases/download/release/ --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com. -- ===================================================== MailPure custom filters for Declude JunkMail Pro. http://www.mailpure.com/software/ =====================================================