[AccessD] mdb block even though it was in a zip file

Heenan, Lambert Lambert.Heenan at chartisinsurance.com
Thu Dec 16 10:55:47 CST 2010 

Whatever SW out Exchange Server runs, it works by extracting the files inside ZIP files and looking for file type signatures.

So if you rename a .exe file to .pdf it will still be rejected by the server because it looks inside the file and sees the "MZ" signature in the first two bytes. But if the zip file is encrypted the server cannot extract the files at all, and so it allows them through.

Lambert

-----Original Message-----
From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com] On Behalf Of Doug Steele
Sent: Thursday, December 16, 2010 11:41 AM
To: Access Developers discussion and problem solving
Subject: Re: [AccessD] mdb block even though it was in a zip file

I had a client with a corporate email system that was smart enough to find an .mdb file inside a renamed .zip archive.  We ended up using box.net to bypass the company security.

Doug

On Thu, Dec 16, 2010 at 8:29 AM, Heenan, Lambert < Lambert.Heenan at chartisinsurance.com> wrote:

> This is pretty routine in MS Exchange Server land.
>
> Another way to get around this is the encrypt the ZIP file. Then there 
> will be no need to rename the file beforehand.
>
>
--
AccessD mailing list
AccessD at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/accessd
Website: http://www.databaseadvisors.com

More information about the AccessD mailing list