Use the Sieve Script editor if you wish to add a user defined, custom disclaimer. The conditions for triggering the disclaimer are the same as for any other sieve script. Some characters in the template will need to be escaped when using the sieve editor. The following sieve filter is provided as an example of a user defined disclaimer:
require ["securitygateway","body"];
if allof(body :text :contains "Make money now!") {
disclaimer "text:
<HTML xmlns:sg = \"http://www.altn.com/Products/SecurityGateway-Email-Firewall/\">
<HEAD><META http-equiv=\"Content-Type\" content=\"text/html;
charset=UTF-8\" />
</HEAD>
<BODY>
<DIV>This is my header text!</DIV>
<DIV>Another line of header text!</DIV>
<DIV> </DIV>
<DIV>---<br />
167
167
<sg:ORIGINAL_BODY Field=\"body:all\">{Original Email}</
sg:ORIGINAL_BODY>
<br />---</DIV>
<DIV> </DIV>
<DIV>This is my footer text!</DIV>
<DIV>Another line of footer text!</DIV>
<DIV> </DIV>
<DIV>This text will be in html and text body<br />
<sg:HTML_ONLY>Only show the image and this text in HTML message!</
sg:HTML_ONLY>
<sg:TEXT_ONLY>Only show this text in Plain Text message!</
sg:TEXT_ONLY></DIV>
</BODY></HTML> ."
; }
3.4 System
The System section under the Setup/Users menu contains links to the following system-related features:
Encryption —This page is used to configure SecurityGateway's various encryption settings. SecurityGateway includes support for the Secure Sockets Layer (SSL)
protocol with the STARTTLS SMTP extension, which prevents others from being able to intercept and read your email. It also includes HTTPS support, which offers this same protection for the web interface.
HTTP Server —The HTTP Server page is used for configuring various settings related to SecurityGateway's web interface. You can designate the host name that will be used in login links created by SecurityGateway, the HTTP and HTTPS ports, and other HTTP related settings.
Branding/Custom Images —This page provide options for customizing the banner images that appear on the login page and the navigation sidebar.
Directories —This page lists the folders used by SecurityGateway to manage various types of files. You can customize the folder locations by changing any of the paths on this page.
Disk Space —The Disk Space page is used for configuring SecurityGateway to monitor your free disk space. It contains options that can be used to send a warning message to the administrators and/or stop receiving messages if the disk space is low.
View Configuration —This page displays all of your current SecurityGateway settings. This can be useful when trying to diagnose problems with your
SecurityGateway server or when working with technical support. This page includes an option to save the current configuration to an XML file.
69
70
71
72
73
73
3.4.1 Encryption
SecurityGateway incorporates the latest in encryption technology to protect your data.
The Secure Sockets Layer (SSL) protocol—also known as Transport Layer Security (TLS)—with the STARTTLS SMTP extension prevent others from being able to intercept and read your email. HTTPS in SecurityGateway offers this same protection for the web interface.
The SSL protocol, developed by Netscape Communications Corporation, is the standard method for securing server/client Internet communications. It provides server
authentication, data encryption, and optional client authentication for TCP/IP connections. Further, because SSL is built into all current major browsers, simply installing a valid digital certificate on your server will activate the connecting browser's SSL capabilities when connecting to SecurityGateway. If you connect using a mail client, SecurityGateway supports the STARTTLS SMTP extension over SSL/TLS.
However, you must first have your client configured to use SSL, and it must support that extension—not all mail clients support it, though most do.
Email Encryption
Enable SSL and STARTTLS support for SMTP
Click this check box to activate support for the SSL/TLS protocol and the STARTTLS extension, using the "Active" certificate in the Select Certificate box below. This option must be enabled and a valid certificate must be active if you wish to log in to SecurityGateway's web interface using HTTPS. This option is disabled by default.
Send messages with STARTTLS whenever possible
Click this option if you want SecurityGateway to attempt to use the STARTTLS extension for every SMTP message it sends. If a server to which SecurityGateway is connecting doesn't support STARTTLS then the message will be delivered normally without using SSL. This option is disabled by default.
Select Certificate
This box lists all SSL certificates that you have created. SecurityGateway generates certificates that are self-signed, meaning that the Issuer of the certificate, or Certificate Authority (CA), is the same as the owner of the certificate. This is
perfectly valid and allowed, but it is possible that some users may be asked whether or not they wish to proceed to the site and/or install the certificate whenever they connect to SecurityGateway's HTTPS URL, because the CA won't already be listed in your their list of trusted CAs. When they agree to install the certificate and trust your SecurityGateway domain as a valid CA they will no longer have to see the security alert message when connecting. Whether or not they have to go through that procedure at all depends on what browser they are using, what security restrictions they have in place, and so on.
Creating SSL Certificates
To create a new certificate, click New on the toolbar at the top of the Select Certificate box. This will open the SSL Certificate screen. To delete an existing certificate, select the certificate and then click Delete.
70
Activating a SSL Certificate
To activate a SSL certificate, click the "Make Active" link in the desired entry.