E-Mail Based Virus
Protection
If your Exchange system has not yet been hit by an e-mail
based virus, you are either not connected to a public network or you are
EXTREMELY lucky (if so, let me know when you plan to hit Las Vegas again!).
Here are some recommendations for virus protection.
Make sure that you have Exchange Server aware
antivirus software. See my
VAPI 2.0 page for information about products that work best with
Exchange 2000. All clients should have client-based virus scanning that
is Outlook-aware Install the Outlook 2000 or Outlook 98 security update.
This will help reduce the likelihood that a virus will be able to take over
Outlook. Install an SMTP virus scanner that accepts inbound mail
before the mail goes to the Exchange server. This solution should
preferably come from a different vendor than the one from you purchased your
Exchange Server-aware software (i.e. Use Norton AntiVirus for Exchange on the
Exchange server and use Trend VirusWall on the SMTP scanning system.)
This gives you two different virus signatures and scanning engines. Update your anti-virus signatures daily Deploy a solution such as the Norton Antivirus Server (the
Symantec System Center) to deploy client signatures automatically
Should I block certain types of
attachments?
I don't like the practice of blocking certain
types of attachments, BUT I do it anyway. I break the types of
attachments down in to two different types: the MUST block and the SHOULD
block;
Must block:
VBS SHS
JS COM
BAT CMD
SCR EXE
PIF EML
CHM WSH
WSC WSF VB
Should block:
VXD CPL ADP
BAS BIN INF
HTA HLP
ASX CRT SH
OCX OFT OVL PL
PLX
MST VST SHB
DLL HIV PCD
SCT SYS
ISP VSS
|