Re: Notifications of external emails

["Miller, Richard H" <rick () BCM EDU>]

We also flag external e-mails. You will need to develop a mechanism to manage a whitelist since many legitimate e-mails
be originate from contractors, other institutions  or ESPs outside of your organization



Richard H. Miller, CISSP, IEEE(SM)
Network Security Architect
IT-Network Engineering & Security
IT Helpdesk 713-798-8737



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Thomas 
Carter
Sent: Wednesday, February 08, 2017 8:58 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Notifications of external emails

***CAUTION:*** This email is not from a BCM Source. Only click links or open attachments you know are safe.
________________________________
We are trying to combat phishing by making users more aware of emails that come from outside campus vs internal emails. 
We've trialed using a mail rule to modify the subject line and prepend a flag (like "EXTERNAL:" or similar) but users 
complained it caused confusion (?) and they didn't like emails to be modified. I suspect a disclaimer added to the body 
of the message would be either ignored or disliked for the same reasons.

Has anyone else done something to somehow flag external emails? What was the feedback? How well does it work?

Thomas Carter
Network & Operations Manager / IT
Austin College
900 North Grand Avenue
Sherman, TX 75090
Phone: 903-813-2564
www.austincollege.edu<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.austincollege.edu_&d=DwMFAg&c=ZQs-KZ8oxEw0p81sqgiaRA&r=2OsE44buE5NKkGGctYIwOw&m=rd3g07MFHiBXRm4-xg4vk9QaJMoMJwyAmgbvCg1D35k&s=aUbm3xLg7KdoiN9JHOw05JQiXDjdqv5oBeiLBYCHUTQ&e=>
[http://www.austincollege.edu/images/AusColl_Logo_Email.gif]