This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Biju_Nair
Contributor
‎2018-05-10 12:05 PM

Sandblast appliance .htm support

Had a incident where an email with .htm attachmentI(with a phishing link in it) went through the TE appliance deployed in mta mode and was delivered to the user.

TE appliance deployed in MTA mode for email and in ICAP mode for web traffics.

is it normal that TE appliance could not detect the phishing link in a attachment(.htm) which came in an email.

sk106123 also  states that .htm format is not in the supported list.

what could be done to have these type of emails blocked by TE appliance.

1 Reply
Charris_Lappas
Collaborator
‎2018-05-23 09:48 PM

This is more to think of an extension type and not the actual link. Is there a business reason to receive emails with html attachments? If not, block the extension, otherwise you will still be protected by your URL filtering, application control policy and Threat Emulation on Gateway level.