Office 2007 x files

[Julian Field]

You cannot allow filenames *only* if they are in an archive. That 
wouldn't add any protection as anyone malicious would just put their 
nasty *.emf files in an archive before sending them to you.

You just need to add \.emf$ files in filename.rules.conf.

Brinkman, Kris CTR USTRANSCOM J6 wrote:
> Does anyone know of a way to add some logic to filename checks.  Recently
> we're seeing that an outside user can send an Office 2007 file to us and it
> is passed since we allow Office files.  However, once the file is opened and
> saved by a Office 2003 user using the compatibility package it automatically
> creates an EMF file in the .pptx file.  If the user then sends the file back
> out, mailscanner opens the file and finds the EMF file inside of it and
> blocks it.  Is there a way to tell it to allow EMF if they are inside a
> .pptx file.  The only other option I can come up with is to allow email from
> our domain to send EMF files using the filename.rules files.
>
> Thanks
> Kris
>   

Jules

-- 
Julian Field MEng CITP CEng
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store

Need help customising MailScanner?
Contact me!
Need help fixing or optimising your systems?
Contact me!
Need help getting you started solving new requirements from your boss?
Contact me!

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.