-
IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Company email - Which file types to block
Our email scanning is run by an external company. It has been working up to a point, but due to the large amount of spam getting through they are upgrading this service. As part of this upgrade, I have been given a list of attachment file types and asked which I want them to block and which to allow.
Half of these I am pretty sure about, but I need some guidance on what some of the others are and whether they are a genuine security threat.
Here's what I have left...
Binary - encrypted
Binary - not protected
LZH compressed archive (if we allow .zip, any reason not to allow these?)
Binhex
Microsoft Compress
TNEF
Possible install shield
PEM - Privacy enhanced mail (we are allowing PGP, so why not these?)
ARJ (see LZH comment)
TAR
CMP
GZP
UUE
Apple double resource fork
Apple single
CDA
DCX
Embedded OLE Object
Embedded OLE Package
JTD
Lotus 123
MS Project - MPP
Pattern matched
XML
Win32 Unknown Executable
DWG
PPM
WMF
PCX
PKCS message
Then, is there any reason to allow any of these scripts in a business email message...
Javascript, JavascriptEncoded, Unknown Script, VBScript, VBScriptEncoded
Thanks
Half of these I am pretty sure about, but I need some guidance on what some of the others are and whether they are a genuine security threat.
Here's what I have left...
Binary - encrypted
Binary - not protected
LZH compressed archive (if we allow .zip, any reason not to allow these?)
Binhex
Microsoft Compress
TNEF
Possible install shield
PEM - Privacy enhanced mail (we are allowing PGP, so why not these?)
ARJ (see LZH comment)
TAR
CMP
GZP
UUE
Apple double resource fork
Apple single
CDA
DCX
Embedded OLE Object
Embedded OLE Package
JTD
Lotus 123
MS Project - MPP
Pattern matched
XML
Win32 Unknown Executable
DWG
PPM
WMF
PCX
PKCS message
Then, is there any reason to allow any of these scripts in a business email message...
Javascript, JavascriptEncoded, Unknown Script, VBScript, VBScriptEncoded
Thanks
- Status
- Not open for further replies.
1 - 1 of 1 Posts
1 - 1 of 1 Posts
- Status
- Not open for further replies.
Tech Support Guy
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!
Full Forum Listing
Explore Our Forums
