Content-filter based on type of files in compressed attachments
It would be great to be able to create rules based on what kind of extensions are attached in compressed files.
I.e. if there are .exe files inside zip or rar attachments. This would help prevent many virus attacks.
Kind regards.
Hello,
Thanks for submitting your idea to us. The ability to delete the entire message when a restricted attachment is found will be considered for future versions has been added to MDaemon 17.0.0.
Thanks again,
Arron
-
Gabriel commented
I need to delete every email that contains a zip attachment with inside an executable file...
-
Basically you are wanting to delete or quarantine a message when a restricted attachment is found, correct?
Thanks for the additional information.
-
Gabriel commented
Hi Arron,
We undergo frequent attacks where spambots from different hosts try to send viruses to us (most of the time those are new viruses which aren't event recognized by Kaspersky's engine), i.e.: "Please see attached invoice" (invoice.zip which contains only invoice.pdf.exe). 99,9% of the time these are viruses, I'd like to delete any email containing exe's inside zipped/rared attachments, as normally you wouldn't send those, even if you wanted to do so, there are other ways to. We already remove exe files even those inside zip / rar attachments, but that's not enough, as our users still get the result stripped email which is useless, so we get frequent calls asking about what those emails are about or if there was some kind of problems as they don't see attachments (lately the text in the body looks somehow reliable). I also tried notifying end users about a stripped attachment but when we get heavy attacks that's even worse as they get lots of emails, (stripped ones + notifications)...
Thanks