Discussion:
Filtering disallowed file types in zip file (SMSME 5.0)
(too old to reply)
barkley bees
2008-02-05 01:50:25 UTC
Permalink
We are using Symantec Mail Security (SMSME) 5.0 on our Exchange 2003 server
to perform the following:

- scan mails and attachments for viruses.
- filter/quarantine encrypted zip files (encrtyped file rule) .
- filter/quarantine disallowed file types (exe, bat, etc) in attachments
(content filtering engine).

The problem we are having is that SMSME5.0 does not appear to support
scanning for disallowed file types within a zip file. With this being the
case it doesn't mean much to have a "Content filtering" engine as a sender
can simply put the disallowed file type in a zip file attachment and send it
through. to our internal users.

Can anyone recommend a workaround or alternative solution (other
application, etc) to prevent disallowed file types in a zip file. Sadly, the
Symantec forums are not very responsive. Appreciate any assistance.
Austin Chen
2008-02-05 02:15:01 UTC
Permalink
Post by barkley bees
- filter/quarantine disallowed file types (exe, bat, etc) in attachments
1. Can you add your file type zip her in above filter in Symantec?
2. Have you looked into the Exchange IMF solution (Exchange Intelligent
Message Filter)
http://technet.microsoft.com/en-us/exchange/bb288484.aspx

The IMF solution should give you what you want to do here if it can not be
done in Symantec.
Post by barkley bees
We are using Symantec Mail Security (SMSME) 5.0 on our Exchange 2003 server
- scan mails and attachments for viruses.
- filter/quarantine encrypted zip files (encrtyped file rule) .
- filter/quarantine disallowed file types (exe, bat, etc) in attachments
(content filtering engine).
The problem we are having is that SMSME5.0 does not appear to support
scanning for disallowed file types within a zip file. With this being the
case it doesn't mean much to have a "Content filtering" engine as a sender
can simply put the disallowed file type in a zip file attachment and send it
through. to our internal users.
Can anyone recommend a workaround or alternative solution (other
application, etc) to prevent disallowed file types in a zip file. Sadly, the
Symantec forums are not very responsive. Appreciate any assistance.
barkley bees
2008-02-05 02:54:52 UTC
Permalink
Thanks for your reply Austin. Sure, we can add *.zip as a disallowed file
type but we do not want to block zip files altogether. We simply want zip
files to be scanned to block any that contain disallowed file types.

Unfortunately this will require us upgrading to SP2 which is not in our
current scope. None the less, we will investigate about Exchange IMF as an
alternative. Thank you again.
Post by Austin Chen
Post by barkley bees
- filter/quarantine disallowed file types (exe, bat, etc) in attachments
1. Can you add your file type zip her in above filter in Symantec?
2. Have you looked into the Exchange IMF solution (Exchange Intelligent
Message Filter)
http://technet.microsoft.com/en-us/exchange/bb288484.aspx
The IMF solution should give you what you want to do here if it can not be
done in Symantec.
Post by barkley bees
We are using Symantec Mail Security (SMSME) 5.0 on our Exchange 2003 server
- scan mails and attachments for viruses.
- filter/quarantine encrypted zip files (encrtyped file rule) .
- filter/quarantine disallowed file types (exe, bat, etc) in attachments
(content filtering engine).
The problem we are having is that SMSME5.0 does not appear to support
scanning for disallowed file types within a zip file. With this being the
case it doesn't mean much to have a "Content filtering" engine as a sender
can simply put the disallowed file type in a zip file attachment and send it
through. to our internal users.
Can anyone recommend a workaround or alternative solution (other
application, etc) to prevent disallowed file types in a zip file. Sadly, the
Symantec forums are not very responsive. Appreciate any assistance.
Loading...