Security Basics mailing list archives

RE: File Catching Firewall?

From: "Josh Mills" <JMills () cnbwaco com>
Date: Mon, 9 Feb 2004 17:05:50 -0600

I allow zips and i just configure my mail server to check for signature updates every 4 hours and i also enabled a few 
options that protect against decompression bombs and things of that sort. If you have an extranet site i would think 
you could disable zip files without causing toomuch trouble.

        -----Original Message----- 
        From: Megan Golding [mailto:mgolding () secureworks com] 
        Sent: Mon 2/9/2004 10:18 AM 
        To: 'securityfocus' 
        Cc: 
        Subject: RE: File Catching Firewall?
        
        

        > From: Brian Guy [mailto:brian () sambizsys com]
        
        > We managed to not get a single MyDoom e-mail with the config below. 
        > This approach blocks about 95% of our spam overall.
        
        Thanks for sharing, Brian. I really like your three-step solution.
        
        > 2.  Advosys Mail Filter filters out dangerous attachments, as
        > defined by you.  You decide what file extensions can come through,
        > what gets blocked.  We block all executable and script extenstions,
        > but we allow PDF and a few others.
        
        How do you (and others) handle ZIP attachments? Allow them thru cause users
        need to get big files from one place to another? Or block them cause they
        can contain viruses?
        
        To minimize email attachments flying around, I've set up something like an
        extranet site for sales people to share documents with prospects without
        sending email attachments.
        
        Megan Golding -- www.SecureWorks.com -- (404) 486-4452
                     Rock-solid Internet security.
                     No hassles. No headcount. No capital outlay.
         check out my security blog: http://zeroeffect.blogspot.com
        
        ---------------------------------------------------------------------------
        Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection
        
        Protect your network with the comprehensive security solution that
        integrates six applications for ease of use and lower TCO.
        
        Firewall - Virus protection - Spam protection - URL blocking - VPN
        - Wireless security.
        
        Download 30-day evaluation at:
        http://www.astaro.com/php/contact/securityfocus.php
        ----------------------------------------------------------------------------

Current thread:

RE: File Catching Firewall?, (continued)
- RE: File Catching Firewall? Stian Holm (Feb 06)
  - Re: File Catching Firewall? Brian Guy (Feb 09)
- Re: File Catching Firewall? Alex Pimperton (Feb 05)
- RE: File Catching Firewall? Tony Kava (Feb 05)
- RE: File Catching Firewall? Tim Ballingall (Feb 05)
- RE: File Catching Firewall? Keith T. Morgan (Feb 06)
- RE: File Catching Firewall? Joe DeMarco (Feb 06)
- RE: File Catching Firewall? Josh Mills (Feb 09)
  - Re: File Catching Firewall? Brian Guy (Feb 09)
- RE: File Catching Firewall? Megan Golding (Feb 09)
- RE: File Catching Firewall? Josh Mills (Feb 10)
  - Re: File Catching Firewall? crtech (Feb 13)
- RE: File Catching Firewall? Josh Mills (Feb 16)