SMTP
Audit and shadowing rights applicable to the SMTP protocol:
•Audit: Connection - Enables the auditing of user attempts to connect to an SMTP server.
The Connection action, the IP address with the port number and the name of the host, the name of the protocol are written to the log. If IP address to host name resolution fails, the host name is not written to the log.
•Audit: Outgoing Messages, Outgoing Files - Enables the auditing of user attempts to send an e-mail message with or without attachments.
The Outgoing Message action, the number of attachments, the e-mail address of the sender and recipients, the message subject are written to the log. The sender address precedes recipient addresses (sender => recipient1, recipient2).
The number of attachments is always written to the Audit Log.
•Shadowing: Outgoing Messages, Outgoing Files - Enables the shadow copying of sent e-mail messages with or without attachments.
Shadow copies of sent e-mail messages with or without attachments are written to the log as .eml files. You can, for example, open .eml files in Microsoft Outlook Express, in Windows Mail, and in Mozilla Thunderbird.
The number of attachments is always written to the Shadow Log.