Allow password-protected zip attachments to bypass AV quarantine, rather than be caught by the "can't be scanned" setting
Customers have started sending large volumes of password-protected zip files (incl password protected MS Office files) and we currently have to manually release each one from quarantine. The option to quarantine messages that can't be scanned is something we want to keep, but allowing password-protected zip files to pass through (maybe just from authenticated local accounts) would prevent potentially large delivery delays for customers.
This has been added in MDaemon 13.0.3.
Please contact our support team for assistance. All of our support options can be found at http://www.altn.com/Support/.
Paul Rainey commented
Do you not have and example of how to make this rule.
I believe this can be done using the content filter, however, you will need to select the option for "do nothing (use content filter to handle)", turn off the option for "Quarantine messages that cannot be scanned" and then create content filter rules to determine the fate of messages. If you would like assistance configuring this please request technical support. All of our support options can be found at http://www.altn.com/Support/.
please make this configurable. we need to be able to switch it off for certain senders.
Sorry Stuart, it is not currently possible to configure the text that is appended to the subject. I believe you can turn off altering the message by unchecking the box for "Add warning to top of message body if infected" but this will cause it to not alter the body or subject for infected messages and messages that cannot be scanned but that are being allowed through.
Stuart Newton commented
Great to see this feature in place and we'll have some happy customers as a result.
I assume we are ok to edit CfNonScanWrn.dat to give a bit of a friendlier warning, however I can't find anywhere that it's possible to change the "MDaemon Warning - non-scan: $SUBJECT" subject line given to a message.
My fear is that many of our customers seeing that subject line will simply skip it or delete it assuming it's purely a warning or notification and not the modified original message.
My gut feeling is that I would want to leave the subject line intact and just insert the warning to the start of the message body - is that possible to configure?
Tim Clarke commented
Extend this to password protected Excel 2007 (xlsx) files as well (unless the problem with being unable to scan workbook (not file) protected files is fixed soon)
Have a list of external known senders whose files are allowed to pass through. Any protected xlsx or password protected zip files we receive are from a limited set of known senders.
No worries, I updated the category for you.
Stuart Newton commented
(sorry - wrong category I think, but don't seem to be able to edit an 'idea')