Does ExchangeDefender PF work on every device I receive email on?
Yes, ExchangeDefender PF automatically encodes all links sent through our system in HTML messages and redirects them through ExchangeDefender PF. This means that the link will be secured no matter which device you use to access your ExchangeDefender-protected email.
Does ExchangeDefender PF protect me from non-email links?
ExchangeDefender only protects you from email links in HTML messages sent to your email address through ExchangeDefender. If your mail client downloads mail from 3rd party external services (Yahoo, AOL, Microsoft, Google) that are not protected by ExchangeDefender, you will not be protected.
Is ExchangeDefender PF available in ExchangeDefender Essentials?
ExchangeDefender PF is only available in ExchangeDefender Pro and ExchangeDefender Enterprise.
Is there any way to turn off URL encoding for specific domains or users?
ExchangeDefender encodes the URL at the edge, as the message is being scanned for malware and other phishing forgeries.
I don’t want to see the ExchangeDefender PF warning/site, can I bypass it?
Yes, you can simply whitelist the domain and ExchangeDefender PF will not be displayed. Whitelisted domains are automatically displayed without ExchangeDefender PF. ExchangeDefender maintains a list of known good/legitimate domains so the likelihood that you will see a dangerous (or questionable) website is very low. Additionally, your IT department or IT Solution Provider has access to organization-wide whitelist and can bypass ExchangeDefender PF to any site you need to visit.
Is it possible to still get hacked/compromised even with ExchangeDefender PF?
ExchangeDefender PF simply applies your organizational policies to traffic and gives you additional information about the link you have clicked on. If you ignore warnings, or if you proceed to a dangerous site as a part of your organizational policy, you can still be compromised.
Is there anything special I need to do on my network in order to support the redirection?
No, you should not have to make any modifications to your client's network in order to support this. If you do something exceptionally unusual (we would have contacted you separately, DoD requirement) and only have an allow access policy while blacklisting the rest of the Internet, redirection happens through https://r.xdref.com domain that needs to be in the safe sites.
Can I turn URL rewriting off?
The ExchangeDefender URL rewriting code is implemented at the edge without regard for domain/user policies. In order not to introduce delays in processing, this is a global rule. If you are concerned about your clients seeing the redirection screen, whitelist the domains they typically go through. If we get complaints about it, we will look at deploying this policy further down in the scanning path which will slow down processing times for domains that opt out of the service and that feature is already in the development queue.
Can I see the copy of the messages you are sending users, so I know what to expect?
Here is a copy of the message in PDF and Outlook format.
Will the links stay live for X number of years for compliance purposes?
Can I get a list of good/bad sites for my compliance records?
Please contact our compliance officer at firstname.lastname@example.org with the letter from your regulatory body and we will do our best to provide this confidential information ASAP.