Version Notable Changes

Several new options have been added to the Sophos Email Appliance SEA with this release. These include Sender Policy Framework (SPF) capability, DomainKeys Identified Mail (DKIM), and the ability to perform recipient validation for specific domains.

Sender Policy Framework (SPF)

Sender Policy Framework (SPF) is an email validation system that helps detecting email spoofing by helping prevent spammers from using forged From addresses.

A new rule type has been added to the SEA that lets you take advantage of SPF.

When you configure an SPF rule, you have several options for handling SPF lookup results:

DomainKeys Identified Mail (DKIM)

DomainKeys Identified Mail is an authentication framework used to sign and validate a message, based on the domain of its sender.  The Sophos Email Appliance can verify DKIM signatures, and add DKIM signatures to outbound mail.

A new rule type, DKIM verification, has been added.

The are a number of different options available that let you choose how you want to manage DKIM verification attempts.

You can also add a DKIM signature to outbound mail with the new Add DKIM signature rule type.

The certificate that is used for the DKIM signature can be selected on the Configuration > System > Certificates page.

Recipient validation limited by domain

You can now validate against specific domains, by adding and selecting domains on the Configuration > Policy > SMTP Options page.