John Bartow
john at winhaven.net
Thu Aug 25 17:16:55 CDT 2005
That's a tough one for sure. If policy is to allow encrypted files get through then I would hope that there are still local anti-virus scanners installed on all workstations and that the message that goes with the non-scanned encrypted attachment would instruct the user to update the local virus signature files before opening and decrypting the attachment. About the only other way to handle it is to divert it to a "safe machine" and make the person open it there. That goes over like a lead balloon with mgt. Though. -----Original Message----- From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com] On Behalf Of Heenan, Lambert I totally agree. If you are going to the trouble of scanning zip file contents it makes no sense at all to rely on the file extensions. But even my shop's method has a gaping hole. If the zip file has encrypted files in it the scanner gives up, adds a message to the effect that the file was not scanned and passes it on to the intended recipient. Not such a good idea. Lambert