[Zix] Default TLS Prevent Domains

Default TLS Prevent Domains

There are numerous internet Service Provider (ISP) domains that allow sending via a TLS connection but do not ensure the message is secured while storing, retaining or displaying email messages. Additionally, replies/forwards of secure messages from these domains are not received securely. To prevent security issues such as insecure replies to sensitive information and bounced messages, the ZixGateway appliance comes with a list of ISPs that are automatically set to prevent a TLS connection. Meaning emails sent to these domains will be delivered via the Zix Portal

The domains that are automatically included in the Domain/Host Specific Authentication & Encryption section and are set to Prevent, are:

•

gmail.com

•

yahoo.com

•

aol.com

•

hotmail.com

•

comcast.net

•

sbcglobal.net

•

msn.com

•

verizon.net

•

att.net

•

live.com

•

me.com

•

earthlink.net

ZixCorp recommends that the default ISPs in the list above are set to "Prevent" to avoid storing, retaining or displaying email messages insecurely.