pramod1
asked on
Is it safe to Allow Malformed MIME?
Does anyone have any thoughts on how to address this request / should we allow malformed MIME emails through, or what the possible risks would be?
as emails from outside with malformed emails are getting blocked in our SMTP gateway.
as emails from outside with malformed emails are getting blocked in our SMTP gateway.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I see you already accepted the answer, thanks. But to answer your final question, a malicious message can still come from a trusted source. For example if someone got a virus on their system and it was sending out emails. As for how it gets malformed, it could have been created that way intentionally in an attempt to send a malicious email to you, or it could be something as simple as a data error during transmission. Either way it is not wise to accept it. If the message was sent from a legitimate source, they will get a message back saying the mail did not go through.
If you want any more clarification, please feel free to post a new question or use the "ask a related question" button at the end of these messages.
If you want any more clarification, please feel free to post a new question or use the "ask a related question" button at the end of these messages.
ASKER
we have allowed malformed MIME but there is checkmark against mime fuzzy main header in our external smtp gateway and extract ole1.0 is also checked-don't know what it means
ASKER