HIPPA password protected zip files

Julian Field MailScanner at ecs.soton.ac.uk
Tue Oct 25 18:02:07 IST 2005 

    [ The following text is in the "ISO-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ed Bruce wrote:

> Information Services wrote:
>
>> I can also set it to a path with a ruleset.  I would much rather set a
>> path instead of letting password protected zip files come through
>> unchecked.  From reading the MailScanner.conf file, and other posts,
>> it is not a wise idea to allow password protected zip files, but for
>> some clarity, even if you did allow these files, the antivirus
>> programs used in conjunction with mailscanner should still work
>> properly and notice virus related password protected zip's  right?
>>   
>
> No, if by password protected you mean encrypted. There is no way to 
> detect a virus in an encrypted file until its is unencrypted, which MS 
> can't do.

However, what it can do with password-protected zip files is read the 
filenames of the contents of the archive. This means that you can still 
do all the filename.rules.conf rules on the contents of 
password-protected zips. The protection is done on the files within the 
archive, not the archive itself.

>> In either case, what would be the proper format to create a ruleset to
>> allow HIPPA related password protected zip files?
>>
>>   
>
>
> You have to determine that. I would suggest using the IP address and 
> not a domain.

Definitely safer to use an IP address, the spammers can forge your 
domain name in an email address a whole lot easier than forging the IP 
address the message came from.

- -- 
Julian Field
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store
Professional Support Services at www.MailScanner.biz
MailScanner thanks transtec Computers for their support

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654


-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.2 (Build 2424)

iQA/AwUBQ15lHxH2WUcUFbZUEQINEACfW+s/BK8h2v5NAs5koDxF3IOSQS0An29i
vNQK1YxkVlnmEdsVoARnIkU7
=IibD
-----END PGP SIGNATURE-----

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list