Skip to main content
Solved

FME Server mail publication and virus security

  • October 10, 2017
  • 5 replies
  • 29 views
helmoet
Forum|alt.badge.img+8

Hi, me and @thomas_merkus have this simple question on configuring FME Server to receive e-mails. If we wanted to configure FME Server to receive mail, we end up with a notification content that possibly contains a reference to an e-mail attachment, which is stored somewhere on the local system. But if that attachment contains a virus, how secure is that? As a human it is possible that I recognize the danger and thus I do not open the attachment. But for a machine as FME Server is, that could be not as simple as that, so the question is: how can we ensure that FME Server is not storing malicious software on the local disk?

Best answer by david_r

I may be a bit paranoid, but I wouldn't allow FME Server to receive mail without some sort of filter somewhere. At the very least some powerful heuristic virus scanner on the mail server, but ideally I'd also consider only allowing pre-authorized senders (whitelist).

    This post is closed to further activity.
    It may be an old question, an answered question, an implemented idea, or a notification-only post.
    Please check post dates before relying on any information in a question or answer.
    For follow-up or related questions, please post a new question or idea.
    If there is a genuine update to be made, please contact us and request that the post is reopened.

    5 replies

    david_r
    Celebrity
    • david_rCelebrity
    • 8394 replies
    • Best Answer
    • October 10, 2017

    I may be a bit paranoid, but I wouldn't allow FME Server to receive mail without some sort of filter somewhere. At the very least some powerful heuristic virus scanner on the mail server, but ideally I'd also consider only allowing pre-authorized senders (whitelist).

    runneals
    Supporter
    Forum|alt.badge.img+28
    • runnealsSupporter
    • Supporter
    • 322 replies
    • October 10, 2017

    I may be a bit paranoid, but I wouldn't allow FME Server to receive mail without some sort of filter somewhere. At the very least some powerful heuristic virus scanner on the mail server, but ideally I'd also consider only allowing pre-authorized senders (whitelist).

    Couldn't you still spoof the email like many Microsoft online systems have been getting hit with lately.

     

     

    erik_jan
    Contributor
    Forum|alt.badge.img+22
    • erik_janContributor
    • Contributor
    • 2179 replies
    • October 10, 2017

    You could always use your regular email server (with virus protection I assume) and use notifications to get the contents and attachments.

    helmoet
    Forum|alt.badge.img+8
    • helmoet
    • Author
    • 195 replies
    • October 10, 2017

    Thanks for the answers :-) @erik_jan yes that is the plan however some mail slips through that, as @runneals suggests. @david_r whitelist seems a nice solution.

    david_r
    Celebrity
    • david_rCelebrity
    • 8394 replies
    • October 12, 2017
    Couldn't you still spoof the email like many Microsoft online systems have been getting hit with lately.

     

     

    Unfortunately, yes. I'd recommend looking into any possible anti-spoofing solutions in your mail filter. Here's some details from Symantec's implementation.

    Community Stats

    32,100
    Posts
    121,895
    Replies
    39,745
    Members

    Latest FME

    Terms & ConditionsCookie settingsAccessibility statement
    A product of
    Safe Software respectfully acknowledges that we live, learn and work on the traditional and unceded territories of the Kwantlen, Katzie, and Semiahmoo First Nations.