Data Leak Prevention (DLP) settings
- Pavel Novák
- Anonymous
The DLP settings dialog allows to change the settings for DLP (Data Loss Protection) engine. The engine searches for any text content inside of files and in this text content searches for listed expressions.
The following can be set:
Maximum file size limit
Specifies the maximum file size for which to perform the check by the engine. The check is done in memory and in case of archives and other containers their whole contents are extracted into the memory. Therefore we do not recommend to set this value higher than approximately 10% of server’s memory.
Treat oversize as clean
If this is enabled and the check is skipped because the file is too big, the file is considered “clean” (like if the check was performed and found no problems). If this is disabled, then such file is considered “unclean” (like if the check was performed and found a problem) and the whole package will be either quarantined, or notification will be sent, see below.
Do not block, only notify
If this is enabled and some file matches the DLP filter, the file is still considered “clean” (like if the check found no problem) and is only flagged. If some e-mail address is set for DLP notifications (see Settings - Configuration - Notifications), a notification is sent to the specified e-mail (the notification is always sent regardless of this setting).
Regular expression patterns
List of regular expressions, for which to look inside the checked files. One expression per line.
The supported regular expression format is according to the Java specification here: Pattern (Java Platform SE 8 ) .
Configuration example
