Video Screencast Help
Symantec Appoints Michael A. Brown CEO. Learn more.

Can DLP inspect an email header?

Created: 13 Feb 2013 | 2 comments

I know that Network Prevent can 'modify' an email header, but I need to know if it can 'inspect' a header.  What I would like to accomplish with this is to be able to determine when a user uses the 'Send and Encrypt' button on their Outlook client.  We have DLP inspecting email content and modifying the email header to encrypt if a policy is triggered.  This overwrites the header that was set when the user used the encrypt button on the client.  I would like to set 2 headers to differentiate between user forced encryption and the DLP system encryotion, so if DLP sees the header set by the client, it simply sends it on to the gateway without inspecting content and modifying the header.  That way, I would be able to run a report to see how many users are actually thinking about the content they are sending out and actually use the encryption button on the client.

Comments 2 CommentsJump to latest comment

kishorilal1986's picture

Hi DD,

Please refer below links

 

https://www-secure.symantec.com/connect/forums/add-header-every-email-dlp-touches
https://www-secure.symantec.com/connect/forums/dlp-network-prevent-can-not-add-x-cfilter-quarantineyes-mail-header
https://www-secure.symantec.com/connect/forums/network-prevent-email-will-not-modify-subject-header
https://www-secure.symantec.com/connect/forums/email-header-not-modified-dlp-smtp-prevent
https://www-secure.symantec.com/connect/forums/dlp-policy-emails-marked-private-0
kishorilal1986's picture

Yes, DLP can inspect email header. for details refer above thread