Creating a Custom Group Policy List and Rule

About this task

Although the Configuration tab of the Groups Web Interface contains several default lists that can be used to determine how the policy deals with specified email addresses and domains, you can also create custom lists.

Note: Regardless of whether the list is a default list or a custom list, it must be combined with a rule in the PureMessage policy, as described in the second part of this procedure.

In this tutorial step you will create an "offensive" list that the policy will use to quarantine messages that contain keywords specified in this list. Then you will use the PureMessage Manager to configure a group-specific policy rule for messages containing offensive words. These messages will be quarantined with the reason "offensive". Finally, you will add an "offensive" option to the quarantine search criteria that will allow group administrators to search for messages that were quarantined for this reason.

Note: This step and steps 6 and 7 require that you edit the policy script using the policy constructor in the PureMessage Manager. It is recommended that you first create a backup of the existing policy that you can revert to when you have finished this tutorial.

First you must back up the policy. On the Policy tab of the Manager, next to Backups on the sidebar, click Create. A backup entry with the date and time is displayed.

Procedure

  • To create the custom list:
    1. At the command line, as the "pmx6" user, run the following:
      pmx-group-list --add --id offensive-words-per-group --name "Offensive Words (per group)"\
          --description "Offensive Words" --match-type contains
    2. Run pmx-profile sync-from-db.

      A list with the assigned name is added to /opt/pmx6/etc and list data is added to etc/multilists.conf. If you use pmx-group with the --view-perm option, you will see that this list now appears among the permissions that can be enabled and disabled.

    3. For each server that is running the group management web interface, at the command line, run:
      pmx-httpd restart

      The list will be accessible the next time the group administrator views the Configuration tab.

  • To create the associated policy rule:
    1. In the PureMessage Manager, click the Policy tab.

      The default PureMessage policy is displayed in constructor mode.

    2. At the bottom left of the page, click add main rule.

      A set of controls for creating a new rule is displayed.

    3. Use the text box and drop-down lists to create a test that matches the one below. Then click add action and select the drop-down list options shown to complete the new rule.


    4. Click Save.
    5. Click Cut.
    6. Click the existing policy rule, Quarantine mail containing suspicious attachments.

      The details for this rule are displayed.

    7. Click Paste.

      The Check for offensive content (per group) rule is added beneath the existing rule.

    8. Click Save.
  • To create the "offensive" quarantine search option:
    1. At the command line, as the "pmx6" user, run the following:
      pmx-group --add-perm --permission quarantine.reason.offensive

      A message is displayed advising that the permission has been added. The Offensive reason will now appear on the Reason drop-down list on the Search Parameters sidebar of the Search tab.

What to do next

For more information, see "Creating a Group List", "Adding and Deleting Custom Reasons", the pmx-group-list man page, and the pmx-group man page.

For more information about configuring the PureMessage policy, see "Policy Configuration" in the Administrator's Reference and "Policy" in the Manager Reference.

Next, you will use pmx-group command to add a group policy setting, and then associate the setting with a group-specific policy rule.