Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
541
Views
0
Helpful
1
Replies

Blocking .eml file type

Tony Kilbarger
Level 1
Level 1

‎10-11-2023 07:55 AM - edited ‎10-11-2023 07:56 AM

For a long time we have blocked ".eml" attachments by extension for some email domains.  With the advancements in scanning techniques by the various filters in CES, what would be the risk of removing this?  Would a ".eml" attachment be scanned just as the base email is scanned?  

Looking for input to weigh risk.

 

Labels:
0 Helpful
1 Reply 1

Dustin Anderson
VIP
VIP

‎10-12-2023 07:39 AM

As far as I have seen, it's treated as an attachment, not another email, so URL rewrites etc will not happen. We have seen them try to use emais as attachments to try to pass along malicious URLs and attachments in that email instead.

 

Personally, I would leave them blocked unless there is a really good reason.

 

To be sure, you can look at logs of an example email as it should still pass through spam, AV etc before being removed by a filter.

0 Helpful
Customers Also Viewed These Support Documents