| Attachment whitelisting [message #153611] |
Mon, 23 January 2023 14:37  |
tverweij
Messages: 72
Registered: March 2010
Location: Curacao
|
|
|
|
In Kerio connect, we have the attachment filter, where we can block certain attachments based on extension.
In this world, where ransomware is a factor that we can not ignore anymore, this is not sufficient anymore, as more and more attachment types are being misused to spread malware .Today I read about onenote to be used to spread malware - extension .one. I had to block this one, while no one I know uses one note but almost everyone has it installed as it is part of MS Office.
So I advocate for an attachment whitelist. No attachments are allowed - unless whitelisted.
In my experience, a company only use .pdf, .zip, .xlsx, .docx - and maybe some others, but this is a very limited set - easy to whitelist while blocking anything else, making the email experience a lot safer.
There should also be a scan for Microsoft Office macro's - if an attachment contains a macro it is blocked (of cause a setting: block macros in office documents) - again, making the email experience a lot safer.
|
|
|
|
| Re: Attachment whitelisting [message #153631 is a reply to message #153611] |
Thu, 26 January 2023 02:46  |
chrisc
Messages: 136
Registered: January 2022
|
|
|
|
Hi tverweij, thank you for your suggestion! I have forwarded it to our Product Team for review. Concerning Microsoft Office documents that contain macros, these should be blockable by adding the *.docm, *.xlsm and *.pptm extensions to the Attachment Filter.
Chris Contorinis
Customer Care Specialist
GFI Software
[Updated on: Thu, 26 January 2023 03:12] Report message to a moderator |
|
|
|
Members
Search
Help
Register
Login
Home
