It is recommended to block executable file types since infection risk is high. It may, for example, trigger malicious code or payload upon file click execution. Furthermore, executable file type attachment is not a good security practice.
Other file types may also be filtered (e.g. optional to block for pro-active protection) depending on your business needs, since these files can be normal attachments in most business industries and risk requires user interaction (e.g. the need to decompress, enabling of macro, or loading of disk image).
Executable files types (e.g. binary, scripts and macro-enabled)
- ·EXE
- ·SCR
- ·VBS
- ·JS
- .XML
- .DOCM
- ·XPS
Image File Types:
- .ISO
- .IMG
Archive or Compressed File Types:
- .ARJ
- .LZH
- .R01
- .R14
- .R18
- .R25
- .TAR
- .ACE
- .ZIP
- .JAR
Document File Types:
- ·DOC
- .RTF
- ·XLS
- .PUB