Interesting timing, we just went through the same migration over the weekend. You can create an inbound lockout policy and specify certain accounts that bypass that restriction, but I've had mixed results with it.
I seem to be having a harder time with Mimecast's grey listing function. Everytime an e-mail is received from a new remote server, it issues a failure response and waits for a retry attempt. If the remote server doesn't comply with RFC standards and re-attempt transmission within 12 hours, the messages are rejected completely. - Sean On Tue, Jul 2, 2013 at 4:27 PM, J- P <[email protected]> wrote: > how about a generic/general account (i.e. [email protected]) that > everyone can use as the from address , then just whitelist that address? > > > > > > > > > > > > > > Jean-Paul Natola > > > > > From: [email protected] > > To: [email protected] > > Subject: [NTSysADM] Postini -> Mimecast - external spoofing > > Date: Wed, 3 Jul 2013 00:18:45 +0000 > > > > > Well, we recently just got off of Postini for our AntiSpam service. We > went to Mimecast. This is a learning curve - but I am working through it. > > > > One of the things Mimecast offers is a "inbound lockout" feature. I like > it - it basically says that if an inbound email is from one of our domains > (@mydomain.com) then unless there is rule with a gateway IP address for > it, then it will block it outright. Nice, we can stop the spoofing! Yeah! > > > > However, I am finding that some websites have articles you can email > yourself. They ask for who from and who to. They then spoof the from going > to the target address - so if I answer [email protected] for both from and > to, then now it will be blocked by the anti-spoof rule. I think that it is > very bad form/style/etc. for the websites to do this. They should be > sending from their domain ([email protected]) instead. > > > > Postini didn't block these. So, now I have a bunch of folks upset about > this. They can't seem to get their articles mailed to them. I told them to > spoof someone else (hotmail, gmail, whatever). > > > > What do you folks do? What is your opinion on the "lockout" feature? > > > > > > > > ---------------------- > > For more information about Lewis and Roca LLP, please go to > www.lewisandroca.com. > > > > Phoenix (602)262-5311 Reno (775)823-2900 > > Tucson (520)622-2090 Albuquerque (505)764-5400 > > Las Vegas (702)949-8200 Silicon Valley (650)391-1380 > > > > This message is intended only for the use of the individual or entity to > which it is addressed. If the reader of this message is not the intended > recipient, or the employee or agent responsible for delivering the message > to the intended recipient, you are hereby notified that any dissemination, > distribution or copying of this message is strictly prohibited. If you have > received this communication in error, please notify us immediately by > replying to the sender of this E-Mail by return E-Mail or by telephone. > > In accordance with Internal Revenue Service Circular 230, we advise you > that if this email contains any tax advice, such tax advice was not > intended or written to be used, and it cannot be used, by any taxpayer for > the purpose of avoiding penalties that may be imposed on the taxpayer >
