[Dshield] Exchange server as fileserver :)

Shawn Cox shawn.cox at pcca.com
Fri Feb 20 14:58:03 GMT 2004

It's a good idea, though not original.


There was also some discussion after MyDoom on NTBugTraq regarding a system
which would strip attachments from e-mail messages and replace with an http
link to the attachment that would only be made available once the attachment
had been deemed appropriate.


----- Original Message ----- 
From: "Pete Cap" <peteoutside at yahoo.com>
To: "General DShield Discussion List" <list at dshield.org>
Sent: Friday, February 20, 2004 7:41 AM
Subject: [Dshield] Exchange server as fileserver :)

> Greets all,
> Just had a thought regarding the propensity of our users to treat e-mail
as a file exchange medium.
> They do it because it's so easy and simple and because, to them, it's a
completely transparent exchange (even if, as noted recently on this list, it
actually typically takes more time than FTPing for the file).
> So, quick solution here.
> Dunno how difficult it would be to implement.
> First off, automatically strip all files from e-mails EXCEPT some type of
specially designed link file.
> Set it up so that when users want to e-mail a file, a separate process
copies the file in question to the internal corporate (or whatever)
fileserver.  The attachment is replaced by a link to the file on the
> When the recipient recieves the e-mail, he clicks on the attachment as
always and it downloads from the fileserver to his desktop.
> So the process is slightly less transparent but you get the benefit of
quarantining all file transfers on the fileserver for examination before
they actually go anywhere.
> An added bonus is that you could set up other entities to be able to
access your fileserver...so the "mailed" files would only occur between
entities with trust relationships.  There would be no possibility for "out
of the blue" file transfers, although you could set it up so that anyone
could upload with some kind of web interface...
> I can think of a few problems off the bat, but I want to see what your
criticism is first...lay it on me :)
> Pete
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Mail SpamGuard - Read only the mail you want.
> _______________________________________________
> list mailing list
> list at dshield.org
> To change your subscription options (or unsubscribe), see:

More information about the list mailing list