Firewall Wizards mailing list archives

Re: Securing email by inhibiting urls

From: "Ilias - " <ilias_pavilion () live nl>
Date: Thu, 11 Aug 2011 17:39:45 +0000

Hi,

I'm using MailMarshal with blended threat module, which also protect against zero day exploit URL's.

Take a look at the PDF : 
http://www.m86security.com/documents/pdfs/datasheets/email_security/DS_Blended_Threats_Module.pdf

If you want some further information about this solution and how you can use this.. Send me an (direct) message.

Best regards,
Ilias
Send from my Blackberry

-----Original Message-----
From: Raphael Rivera <rafinous () yahoo com>
Date: Thu, 11 Aug 2011 13:40:18 
To: <chughes () l8c com>; <firewall-wizards () listserv icsalabs com>
Subject: Re: [fw-wiz] Securing email by inhibiting urls

Chris,


Have you all tried barracuda spam firewall? 

Sent from my iPhone

On Aug 1, 2011, at 2:46 PM, "Chris" <chughes () l8c com <mailto:chughes () l8c com> > wrote:





A company I work for has been having great difficulty in securing against email attacks.  So far we have disabled 
access to webmail, implemented  rules and processes to block freemail services like hotmail etc until the sender 
registers the address and of course a spam filter (BrightMail).  Attachment filtering is pretty strict as well.
 
The threat that presents the biggest challenge is url links in emails.  The common method of attack is an email from 
somedomain.com <http://somedomain.com>  where they change one character or otherwise make the address look valid (ie: 
joe () s0medomain com <mailto:joe () s0medomain com>  or j0e () somedomain com <mailto:j0e () somedomain com>  etc).
 
I was looking for a way to spot and block hyperlinks but it looks like the only option I have is to filter on these and 
send them to a spam bin.  I'd rather yank the offending hyperlink and replace it with a message of some sort.  
Unfortunately BrightMail doesn't offer that capability.
 
Any products that do this or ideas on a solution?
 
Thanks
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com <mailto:firewall-wizards () listserv icsalabs com> 
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Securing email by inhibiting urls, (continued)
- - - Re: Securing email by inhibiting urls Timothy Shea (Aug 11)
- Re: Securing email by inhibiting urls Kurt Buff (Aug 11)
  - Re: Securing email by inhibiting urls Chris (Aug 11)
    - Re: Securing email by inhibiting urls Kurt Buff (Aug 11)
- Re: Securing email by inhibiting urls Raphael Rivera (Aug 11)
  - Re: Securing email by inhibiting urls Victor Williams (Aug 11)
- Re: Securing email by inhibiting urls Mark E. Donaldson (Aug 11)
  - Re: Securing email by inhibiting urls Chris (Aug 12)
    - Re: Securing email by inhibiting urls Paul D. Robertson (Aug 12)
- Re: Securing email by inhibiting urls Chris (Aug 11)
- Re: Securing email by inhibiting urls Ilias - (Aug 11)