Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 1588 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ZIP files are not scanned for EXE files

ylb
We have a huge security issue when scanning ZIP files. We allow zip-files to go through, as per company rule, but we do not accept EXE-files. Our problem is now, that all EXE files within a ZIP file, still goes through, and are not blocked.

On our old system running QMail, all ZIP files are scanned for both virus, and file extenstions, if any EXE files are found within a ZIP file, the ZIP file is blocked. We want the same feature on ASG 6, is there any way to define ZIP files to be scanned also?


This thread was automatically locked due to age.
Parents
  • 0
    Well, I don't think they have a mechanism that allows a zip file to be blocked solely because there's an EXE file in it. However, if you have AV enabled, it will scan the files within the ZIP file--unless it's password protected.. then it can't scan the file at all.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to BrucekConvergent
    Qmail without the extended scanners can't scan the content too. Don't remeber how the scanner was called. As far I remember there is something similar for the exim, but the last time I tested it, it caused more trouble then it would solve. 

    Maybe the AV scanners bring such an option with them, because they allready have to open the containers.
Reply
  • 0 in reply to BrucekConvergent
    Qmail without the extended scanners can't scan the content too. Don't remeber how the scanner was called. As far I remember there is something similar for the exim, but the last time I tested it, it caused more trouble then it would solve. 

    Maybe the AV scanners bring such an option with them, because they allready have to open the containers.
Children
No Data
Cookie Information Banner