4.2 Mail Body

📖 Overview

The Mail Body module allows administrators to create and enforce custom content filtering rules by blocking emails that contain specific keywords or phrases within the body of the message.

This is a proactive mechanism designed to stop unwanted, offensive, or high-risk content from reaching end users — regardless of the email’s origin or structure.

🛡️ This feature is especially useful for preventing social engineering, profanity, data leakage, and policy violations within incoming or outgoing mail.

🔍 What You’ll See

• 🔤 Input Field: Add one or more keywords to be blocked

• 🛑 Banned Words List: Visual panel showing all terms currently enforced

• ➕ Add Button: Instantly activate a keyword as a blocked term

• 🗑️ Delete Options: Manage or remove terms at any time

🧠 How It Works

When an email is received:

1. ShieldsGuard scans the body content of the email (including HTML and plain text).

2. If any of the banned keywords are found, the message is flagged.

3. The email is then:

   • Quarantined or dropped (depending on policy)

   • Logged in 3.3 Mail as BLOCKED WORDS IN CONTENT

   • Counted in dashboard statistics and reporting

💬 Use Cases

🔧 Advanced Tips

• Keywords are case-insensitive.

• You can use partial or exact match logic (e.g., reset blocks password reset, reset-link, etc.).

• Regular updates to keyword lists improve relevance over time.

• Avoid overblocking by testing with common business phrases.

📊 Integration with Other Modules

⚙️ Analyst Recommendations

🎯 The Mail Body module ensures that no message reaches your users if it contains unwanted, dangerous, or prohibited language — enforcing policy with precision and speed.