I like that I can enable "Notify administrator about undelivered messages from internal senders" in the malware policy.
I don't like that the malware detection engine has no idea if a sender is actually internal. It does simple domain-matching, which means that if someone is sending out malware and spoofing the sender address to pretend that it's from us, then I get notifications for days. Can't it at least do an SPF check?31 votes
We hope to have this one addressed within the next month or two.
- Don't see your idea?