What file types should we be blocking on the virus scanner for Exchange Server, to minimize the possible threats that are attached on incoming mail?
Blocking file types is not always the answer. For example, if you block all *.exe, *.DLL, *.VB, *.VB?, *.DOC, *.XLS and others, you may be protected, but you won't be able to do business or use e-mail at all.
Instead, I offer the solution of placement of a mail/SMTP scanning product at a stratgic point in your network infrustruture. All mail should/would be scanned by this device prior to entrance into the network, thereby correcting and removing all viruses.
If you are having a problem where employees are using HTML e-mail, try using a proxy server (or some other similair product) to control the Web pages that can be visited. It is not uncommon for hotmail.com, juno.com and other e-mail HTML sites to be limited or not allowed at all for use within a company.
For more information on this topic, check out these resources:
Best Web Links: Secure messaging
Executive Security Briefing: E-mail security -- Defending the server
Security Policy Tip: Executable e-mail attachments -- Educate the end user
Dig deeper on Security Resources
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.