Versions Compared

Old Version 16

changes.mady.by.user Matthew Sywulak

Saved on

compared with

New Version 32

changes.mady.by.user Matthew Sywulak

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: v20241211a
Table of Contents

2024-312-1911

Status
colourBlue
titlenew

...

feature
-

...

The core concepts of the Allow and Block List are remaining the same where an admin chooses an appropriate threat category and criteria to block or allow a particular message. However, there have been a few new additions added to provide more targeted entries when appropriate.

DMARC Authentication

Allow list entries can have “only if passing DMARC” and Block list entries can have an “only if failing DMARC” option.

Allow list entries now prompt you and pre-check “Apply only to messages that pass DMARC authentication (safer option)” when applying a new Allow Entry. This option gives admins more control in which messages apply to the new entries.

...

Given the entry above, with DMARC authentication check, we have two messages below that would be evaluated against it on future deliveries. The first one has an SPF pass for securitytides.com and the second one has no authentication passes. In the future, due to the new allow list entry, the top message, with authentication will not be marked as Spam Content, while the second one will because it has no authentication.

...

On the Block Listing side, admins now have the option to “Apply only to messages that fail DMARC authentication (useful for targeting Spoofing).” Think of this as an internal INKY DMARC failure control where if you receive a spoofed email from a particular sender, domain, or IP address you can have it set block if necessary.

For example, the below entry for google.com would apply the Phishing Content banner to all messages with a FROM header google.combut contains no passing authentication. Normally, individual companies are expected to control their DMARC records to perform this type delivery but having the flexibility within INKY gives you more control.

...

To learn more please review: https://inkyops.atlassian.net/wiki/spaces/AG2/pages/2139160585/Allow+and+Block+Listing#Authentication

Match Subdomains

When adding an Allow Entry against a specific domain admins are now prompted with an option to cover all subdomains for the given domain. The below example shows the option to “Never warn about Spam Content for mail from domain securitytides.com (and subdomains).”

You’ll also be able to add subdomain matching entries against domains added directly from https://app.inkyphishfence.com/settings/allow-list.

...

Editing Allow and Block List

Allow list and block list entries are now editable. These allow list options can be set when performing allow list message actions and also when manually adding via csv input, or via the More Info > Edit interface. This can be set when manually adding via csv input or via the More Info > Edit interface.

To learn more please review: Editing Allow and Block List

Add/Remove/Edit User Level Allow and Block List

Admins can now manually add (and edit) user-specific allow and block entries as well as manually add Blocked Sender entries (for specific users or at the team level) via the csv input option.

To learn more please review: Add/Remove/Edit User Level Allow and Block List

Status
titleEnhancement
- Alert Indicator for Permissive Allow and Block entries

Found on the https://app.inkyphishfence.com/settings/allow-list and https://app.inkyphishfence.com/settings/block-list pages you’ll now see an Alert column indicating if an entry added to either list is too permissive or restrictive.

For example, the below entry is an Allow List for First-Time Sender that has a “None” criteria meaning it will match on every new message received and never allow another First-Time Sender threat category. With First-Time Sender completely disabled this would be seen as a very permissive allow list entry that these new warnings are meant to highlight to admins.

...

Team or Organization filter search

The Team search option within the Filters on the Dashboard has been updated to include an Organization search. This new search option allows you to search for a specific team or organization within the Dashboard. You can search using four different methods:

  1. Team Name: Search for a specific team by name.

  2. Organization Name: Search for a specific organization by name.

  3. Team ID: Search for a specific team by ID. This is the unique identifier for the team which is the same as organization ID.

  4. Domain Name: Search for a specific team by domain name.

...

Organizations are displayed in the search results with a building icon next to the name. This allows you to easily identify and filter by organization.

Status
colourBlue
titlenew feature
- Reinstall Option on Tenant Operations

On the Tenant Operations page Tenant Operations there is a new Reinstall option available. This option allows you to reinstall INKY for a specific tenant. To use this option, click the Reinstall button and confirm the action.

...

Note

This action will reinstall INKY for the selected tenant. All dashboard configuration will NOT BE modified. However, there may be a small window of time where messages are not processed by INKY. Only perform this action if you are sure you want to reinstall INKY for the tenant. If you have any questions reach out to INKY Support support@inky.com.

...

Status
colourBlue
titlenew feature
- Workflow Expiration Reminder Notifications

INKY’s Outbound Workflow includes notifications for messages held for review. Approval expirations can be set to 1, 2, 3, 5, 7, 14, 30, or 60 days, depending on the rule. However, longer approval periods carry the risk that the original approver might not act in time. To address this, we’ve introduced Expiration Reminders.

You can configure Expiration Reminders through the cog settings icon under the “Edit Rule” options. Simply select “Add Reminder” to set up the desired notifications. You can schedule up to two reminders with different intervals. For example, in the screenshot below, the 2 days and 4 hours option ensure the approver is notified 2 days and 4 hours before the original message’s expiration.

...

Status
titleENHANCEMENT
- Audit Log Updates

The Audit Logs has been updated to provide all accessible logs for the selected team or organization. INKY currently retains logs for the lifetime of the customer account (since June 2021). You can filter by the pre-selected timeframes or use the custom date range to view logs.

Find the audit logs at the bottom of this page: Admin Management - INKY

Status
titleENHANCEMENT
- Allow and Block List Comment Fields

The Allow and Block Lists have been updated to include a Comment field. This field allows you to add a comment to each entry in the list. Comments can be used to provide additional context or information about the entry. Comments cannot be changed once added, but you can delete and re-add the entry with a new comment if needed.

...