The Sophos email-filtering rules.

Policies consist of rules made up of tests and actions. As messages pass through the policy engine, they are tested against specified criteria. Messages that match have a specified action performed on them (for example, Mail With: Unscannable Attachments - Take Action: Quarantine). Rules can relate to the identification and handling of messages or URLs containing:

  • spam
  • viruses
  • unscannable, encrypted, or suspect attachments
  • offensive words
  • keywords