Barracuda Email Gateway Defense Updates

Force TLS for inbound mail

Tue, 14 Dec 2021 21:37:38 GMT

What: New feature to Force TLS for inbound mail
To require mail coming inbound to Email Gateway Defense to use a TLS connection, use the SMTP Encryption section on the Domains > Edit Settings page for each domain.

Use the Require TLS to Barracuda from these domains list to require a TLS connection from certain domains to Barracuda. You can manually add specific domains one at a time or use the Bulk Edit button.

Note: TLS provides secure transmission of email content, both inbound and outbound, over an encrypted channel using the Secure Sockets Layer (SSL). If a TLS connection cannot be established, then the mail will not be delivered.

Ability to Exempt from Outbound Encryption

Sun, 23 May 2021 18:32:54 GMT

You now have the ability to add exemptions to outbound encryption policies. On the Outbound Settings>Content Policies page> Message Content Filter, select the Do not encrypt action filter to customize outbound encryption exemptions for subject, headers, body, attachments, sender, or recipient.

Note that when you select Don’t Encrypt on a Message Content Filter and Encrypt on a Predefined Filter, the Message Content Filter exemption takes precedence over the Predefined Filter and the message will not be encrypted.

Learn more

Granular Control for End User Sender Policies

Mon, 22 Mar 2021 13:45:50 GMT

You can now allow your end users to exempt senders and decide if their sender policies may or may not override admin block lists. To review or make changes to this policy, go to Users> Default Policy> Exempt Senders.

Exempt Senders – Specify whether users can exempt messages from a specific email address or domain on the Settings > Sender Policy page.

Allow users to exempt senders – Users can exempt senders, and user exemptions override account and domain admin block lists.
Allow users to exempt senders but do not override admin block lists – Users can exempt senders, but account and domain admin block lists take precedence over user exemptions.
Do not allow users to exempt senders – Users cannot exempt senders.

Learn more

Option to Block or Quarantine Emails from Domains with No SPF Record

Tue, 26 Jan 2021 00:35:00 GMT

You can now block or quarantine inbound emails from domains that do not have an SPF record.
Additionally, if you have known/trusted contacts that send email from or through mail servers whose domains have no SPF records, you can create exemptions for these senders to allow their mail through while still blocking mail from other mail servers that do not have SPF records.

Configure on the Inbound Settings > Sender Authentication page.

Learn more

Option to Block Senders from the Quarantine Notification

Fri, 15 Jan 2021 23:23:00 GMT

You now have the option to block senders directly from the quarantine notification. A new link has been added, for each message, in the Quarantine Notification email. In addition to the DELIVER and ALLOW LIST links, there is now also a BLOCK LIST link. When clicked, the sender’s email address is added to the end user’s Block List and will appear on the Sender Policy page. If end users are not allowed to block senders, they will see the following message when they click the BLOCK LIST link: “Your administrator has disabled the option to block sender email addresses.“
Learn more

Prevent Users from Viewing and Delivering Quarantined Email

Fri, 04 Dec 2020 21:43:00 GMT

You can now choose whether or not to allow your end users to view and deliver emails that have been quarantined. To configure this, go to Users>Default Policy>Allow end users to view and deliver quarantined messages. The default setting for this is 'Yes’.

When set to Yes, users can view and deliver quarantined messages from their message log or from the Quarantine Notification email.
When set to No, users cannot view, deliver, allow, or download quarantined messages.

Your end users might be trained to distinguish between legitimate and malicious email, but turning off this option will increase the overall safety of your organization.

Read Receipts for Encrypted Messages

Thu, 24 Sep 2020 13:34:00 GMT

As an administrator, you now have the option to enable read receipts for users who send encrypted messages using the Barracuda Email Encryption Service. This is disabled by default and must be enabled per domain. To enable, go to Domains and click ‘Edit’ for the domain you wish to enable read receipts for. Under Encryption, select ‘Yes’ for 'Enable Read Receipts’.
When read receipts are enabled, an email notification will be delivered to the sender when the recipient opens their email. Learn more

Beta - Read-Only APIs

Tue, 11 Aug 2020 21:38:00 GMT

The Barracuda Email Security Service now provides APIs* that allow you to interact with the product. Customers, MSPs and partners can use these APIs for enhanced reporting and to demonstrate the value of Barracuda email protection.

Sample use cases:
• Create reports for each customer using product data
• Generate graphs and charts using their own reporting tools
• Gain visibility into the types of threats for each customer account

The beta release includes read-only APIs to get information on accounts, domains and inbound/outbound email statistics.

*The Barracuda Email Security Service API is currently only available for accounts in the US region.

Learn more

Recipient Address Rewriting

Thu, 23 Apr 2020 22:03:00 GMT

You can use this feature to modify the email addresses of recipients in messages that enter your organization through the Barracuda Email Security Service (ESS). When enabled, the feature will replace aliased domains with the primary domain. This is useful in consolidating email addresses and mail servers post mergers and acquisitions. Learn more

Block Password Protected PDFs

Tue, 14 Apr 2020 13:24:00 GMT

You now have granular control over messages containing password protected PDF documents. Phishers and scammers sometimes use malicious PDFs to attack email users. You can choose to block or quarantine such messages. You can also choose to ignore such messages wherein the service does not look for, or act on, emails that contain password protected PDF documents.
This option is available for inbound and outbound email and can be found under

Inbound Settings>Content Policies. Learn more
Outbound Settings>Content Policies. Learn more