Open adhilto opened 5 months ago
@adhilto Will discuss this with the team to determine which changes should be made. @prodjom
@adhilto We will implement the recommended changes.
PR has been created. TTP Mappings still need to be done and drift rules need to be created.
Drift Rules have been completed. Now only waiting on TTP mappings.
Followed-up on the status of the TTP mappings.
(Using the numbers of the gmail-changes-1 branch)
GWS.GMAIL.14.1v0.1 instructs users to not use an email allowlist, referring to this feature here:![image](https://github.com/cisagov/ScubaGoggles/assets/106177711/19fd42d0-a6de-4960-a415-e65d1996a548)
However, there is another way to create an allowlist that the baseline does not address:![image](https://github.com/cisagov/ScubaGoggles/assets/106177711/8e27e27e-f7dc-4bff-8e91-7d05baab6dd4)
What was previously GWS.GMAIL.18 touched on some of these settings, but this group is being deleted. I agree with the deletion of this group--the guidance there was confusing and contradictory--but I would recommend adding a new control group that rules out the various ways users could bypass spam protections.
Proposed group name: "Spam Filtering"
Policies: