04-25-2008 08:31 AM
2) However, it is my understanding that DA monitors users involved within a possible breach. Let's assume I did NOT now EV Test 12 received the above email. Therefore if I run a new search by content only (In the example above it would be "This is a test"); this email and others with same content will be listed for my results.
But in this scenario...there is no way to determine if anyone was BCC'd. How would the end user be assure that no one was BCC'd in an email?
I've seen some possible recommendations through the forums to enable BCC Journaling and disable Envelope Journaling. However, has anyone tested if this option works? Has anyone been able to get this to work with Envelope Journaling?
Thanks for any help!
Dennis
04-25-2008 11:20 AM
04-25-2008 01:51 PM
05-22-2008 07:41 AM
Since I opened this posting...it would be appropriate for me to close it out by informing everyone on the results of our testing. ?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
We've implemented BCC Journaling per Symantec's recommendation within our LAB environment, and we were able to keep track of email addresses being BCC'd through Discovery Accelerator.
We ran through the same example listed in my original discussion and everything worked as intended.
Hope this helps!
Best Rgds,
Dennis