I would say its better to strip unauthorized attachments instead of blocking the whole message. A notice could be appended to message informing about the stripped attach. This because some email clients/MTAs insert their own attachments, and user cannot control this. The attachments in many cases does not matter, could be company logos, vcard's, signatures, AUP's (Yes I have seen one company that embedded their TOS/AUP as a pdf attachment, and the customer service representative could propably not control or suppress this.). and similiar, and can be safely stripped off. Some old versions of outlook express also put the message as a .dat attachment. So best way here is to strip such things.
"@lbutlr" <krem...@kreme.com> skrev: (9 april 2015 11:04:32 CEST) >On Apr 8, 2015, at 12:23 PM, Noel Jones <njo...@megan.vbhcs.org> wrote: >> Alternately, reconsider blocking all executable attachments as a >> site-wide policy. That will take care of a lot of problems, and is >> becoming a fairly common policy. > >I blocked a long list of dangerous attachment types at least a decade >ago and I’ve never heard a single complaint about it. > >-- >"The true measure of a man is how he treats someone who can do him >absolutely no good." ~Samuel Johnson
smime.p7s
Description: S/MIME Cryptographic Signature
