thanks for the tip Paul. Sanesecurity with Foxhole works like a charm. Regards,
On Fri, Dec 20, 2013 at 8:21 PM, Paul Whelan <[email protected]>wrote: > On 20 Dec 2013 at 15:51, aquilinux wrote: > > > Hi all, > > I'm using attachment blocking to block Level1 extensions for all users: > > > > "exe|scr|pif|vb[es]|js|jse|ws[fh]|sh[sb]|lnk|bat|cmd|com|ht[ab]" > > > > but an .exe inside a .zip passed thru. > > > > Does attachement blocking look inside archives? > > How can i block this kind of exploit? > > > > I scanned the .exe with clamscan but it detected no virus otherwise clam > > would have blocked the attachment. > > Use the Sanesecurity signatures - specifically the Foxhole ones which can > block executables, > double extensions etc. inside zips. > > paul > > > > ------------------------------------------------------------------------------ > Rapidly troubleshoot problems before they affect your business. Most IT > organizations don't have a clear picture of how application performance > affects their revenue. With AppDynamics, you get 100% visibility into your > Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics > Pro! > http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk > _______________________________________________ > Assp-test mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/assp-test > -- "Madness, like small fish, runs in hosts, in vast numbers of instances." Nessuno mi pettina bene come il vento. ------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
