Forums  Register  Login  My Profile  Inbox  Address Book  My Subscription  My Forums 

Member List  Search  FAQ  Ticket List  Log Out

 

RE: Threat Engine in Version 9

  		Logged in as: Guest
Users viewing this topic: none
  Printable Version
All Forums >> [Web & Mail Security] >> GFI MailSecurity >> RE: Threat Engine in Version 9 Page: <<   < prev  1 [2] 3   next >   >>
Login
Message << Older Topic   Newer Topic >>
RE: Threat Engine in Version 9 - 3.Apr.2006 5:10:05 PM   
jbarsodi

 

Posts: 35
Joined: 5.Jan.2004
From: Irvine, CA
Status: offline 		Hi Mark,
Sorry I don't see where in the above mentioned link it explains how to send them.

(in reply to Mark Busuttil)
Post #: 16
RE: Threat Engine in Version 9 - 4.Apr.2006 7:46:11 AM   
Mark Busuttil

 

Posts: 4836
Joined: 16.Oct.2005
Status: offline 		hi Jbarsodi,

The following link explains how to generate your troubleshooter files:

http://forums.gfi.com/Read_this_first/m_900727091/tm.htm

Thank you,

_____________________________

Regards,
Mark Busuttil

GFI Software Ltd - www.gfi.com
Messaging, Content Security & Network Security Software
GFI: MailEssentials - MailSecurity - MailArchiver - FAXmaker - LANguard – WebMonitor

(in reply to jbarsodi)
Post #: 17
RE: Threat Engine in Version 9 - 23.Apr.2006 11:44:57 PM   
jbarsodi

 

Posts: 35
Joined: 5.Jan.2004
From: Irvine, CA
Status: offline 		Hi Mark,
I've uploaded the troubleshooter files to the support FTP.  The file name is preceptgroup.com.zip.

If you need me to reproduce the error please let me know.  We have a copy of the secure email attachment on a freemail acct that we can forward in at any time to reproduce the problem.

Thank you,
John

(in reply to Mark Busuttil)
Post #: 18
RE: Threat Engine in Version 9 - 27.Dec.2006 8:15:00 AM   
systadmin

 

Posts: 11
Joined: 10.Aug.2005
From: Florida
Status: offline 		We are on Mail Security 10 and having an issue where JavaScript is being striped from html e-mail.
The emails are coming from Aetna and we would like to trust them and not strip anything from the emails coming from that domain. These are statements and represent money to our business, the only way around this is to set the user up with an outside free email address and that negates having your software. Is there a way to trust a domain and not have the emails stripped?

(in reply to jbarsodi)
Post #: 19
RE: Threat Engine in Version 9 - 28.Dec.2006 7:04:12 AM   
Mark Busuttil

 

Posts: 4836
Joined: 16.Oct.2005
Status: offline
What Build of GFI MailSecurity are you currently running on?

Can you please send us a copy of the original email message and final email message in EML or MSG format. Please zip these up and send them over to us at forums@gfi.com with reference to this thread.

There is no whitelist within GFI MailSecurity, this is done to prevent any security attack from a trusted domain.

This can occur if virus infects a legitimate users, and it starts sending infected emails from the legitimate user using the legitimate user's email address.

Thank You


_____________________________

Regards,
Mark Busuttil

GFI Software Ltd - www.gfi.com
Messaging, Content Security & Network Security Software
GFI: MailEssentials - MailSecurity - MailArchiver - FAXmaker - LANguard – WebMonitor

(in reply to systadmin)
Post #: 20
RE: Threat Engine in Version 9 - 28.Dec.2006 7:59:36 AM   
systadmin

 

Posts: 11
Joined: 10.Aug.2005
From: Florida
Status: offline 		I have been trying to get some test emails sent to an outside address so I can test. I think the sanitizer could be stripping the e-mail before it gets to its final destination. I cant send you the e-mails we have now because they have private information in them. We are on build 20060721
The e-mails contain a link that uses scripting to open a secure message. The email is cleaned and then the link wont work.
We may have to disable the sanitizer as this is effecting how we do business with Aetna.

< Message edited by systadmin -- 28.Dec.2006 8:00:48 AM >

(in reply to Mark Busuttil)
Post #: 21
RE: Threat Engine in Version 9 - 28.Dec.2006 8:12:36 AM   
Mark Busuttil

 

Posts: 4836
Joined: 16.Oct.2005
Status: offline 		Thanks for the update,

Once you disabled the Sanitizer, does the problem persist?



_____________________________

Regards,
Mark Busuttil

GFI Software Ltd - www.gfi.com
Messaging, Content Security & Network Security Software
GFI: MailEssentials - MailSecurity - MailArchiver - FAXmaker - LANguard – WebMonitor

(in reply to systadmin)
Post #: 22
RE: Threat Engine in Version 9 - 28.Dec.2006 8:16:56 AM   
systadmin

 

Posts: 11
Joined: 10.Aug.2005
From: Florida
Status: offline 		I have to call Aetna today and see if I can get them to send us some examples. I will update you as soon as I know. Thanks for the help.

(in reply to Mark Busuttil)
Post #: 23
RE: Threat Engine in Version 9 - 28.Dec.2006 8:51:43 AM   
systadmin

 

Posts: 11
Joined: 10.Aug.2005
From: Florida
Status: offline
quote:

ORIGINAL: Mark Busuttil
Can you please send us a copy of the original email message and final email message in EML or MSG format. Please zip these up and send them over to us at forums@gfi.com with reference to this thread.
Thank You



Email sent

(in reply to Mark Busuttil)
Post #: 24
Ticket Reference Numbers - Closed - 29.Dec.2006 5:44:50 AM   
Mark Busuttil

 

Posts: 4836
Joined: 16.Oct.2005
Status: offline 		This issue is currently being handled by e-mail support. The reference number(s) used are:

137513 - systadmin

Should you require any updates or further information, kindly contact forums@gfi.com and reference the url of this topic

< Message edited by Mark Busuttil -- 25.Jan.2007 10:40:39 AM >

_____________________________

Regards,
Mark Busuttil

GFI Software Ltd - www.gfi.com
Messaging, Content Security & Network Security Software
GFI: MailEssentials - MailSecurity - MailArchiver - FAXmaker - LANguard – WebMonitor

(in reply to systadmin)
Post #: 25
RE: Ticket Reference Numbers - Closed - 17.Jul.2007 4:04:39 PM   
onepeon

 

Posts: 6
Joined: 2.Mar.2007
Status: offline 		Any followup on this issue?

We're having Aetna securedoc.html files stuck in our Threat Engine scans waiting in Quarintine.

Whitelist IP list please?

(in reply to Mark Busuttil)
Post #: 26
RE: Ticket Reference Numbers - Closed - 18.Jul.2007 8:11:37 AM   
Mark Busuttil

 

Posts: 4836
Joined: 16.Oct.2005
Status: offline 		Hi onepeon,

Is the email being detected by the Email Exploit Engine? If yes, can you please clarify by which email exploit is this being detected?

Thank you!

_____________________________

Regards,
Mark Busuttil

GFI Software Ltd - www.gfi.com
Messaging, Content Security & Network Security Software
GFI: MailEssentials - MailSecurity - MailArchiver - FAXmaker - LANguard – WebMonitor

(in reply to onepeon)
Post #: 27
RE: Ticket Reference Numbers - Closed - 17.Dec.2007 2:26:20 PM   
mrdon

 

Posts: 4
Joined: 17.Dec.2007
Status: offline 		Any resolution to this? We are having the same problem with the emails that come from aetna.com

(in reply to Mark Busuttil)
Post #: 28
RE: Ticket Reference Numbers - Closed - 18.Dec.2007 5:43:40 AM   
sandro

 

Posts: 1345
Joined: 26.Jul.2007
Status: offline 		Hello mrdon,

Could you please provide more information about your issue?

What version and build of MailSecurity are you running?

Is the email being detected by email exploit engine?

Regards

_____________________________

Sandro Pace
GFI Software - www.gfi.com
Messaging, Content Security & Network Security Software

(in reply to mrdon)
Post #: 29
RE: Ticket Reference Numbers - Closed - 27.Dec.2007 7:31:18 PM   
mrdon

 

Posts: 4
Joined: 17.Dec.2007
Status: offline 		Version 9.0

Build 20060313

(in reply to sandro)
Post #: 30
Page:   <<   < prev  1 [2] 3   next >   >>
All Forums >> [Web & Mail Security] >> GFI MailSecurity >> RE: Threat Engine in Version 9 Page: <<   < prev  1 [2] 3   next >   >>
Jump to:





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts