Secure Computing SSL Scanner User Manual

Common

Document Download Filter

The

Document Download Filter

section looks like this:

Using this section, you can configure actions for inbound office documents that
may enter your corporate network from the Web and are potentially malicious.

The document formats that can be filtered include Microsoft Word 97-2003, Mi-
crosoft Excel 95-2003, Microsoft PowerPoint 95-2003 and all known versions
of Adobe Portable Document Format (PDF).

Furthermore, they include the following open document formats: Generic XML,
Microsoft OpenXML, Oasis Open Document Format, and the Simple Object
Access Protocol (SOAP), which is an XML-based communications protocol for
applications.

These documents may contain “active” content. Word, Excel, PowerPoint and
Microsoft Open XML support ActiveX controls and macros, while PDF and the
Oasis Open Document Format support embedded JavaScript.

This active content may be hostile rather than friendly, so for full protection
against files that are embedded into Microsoft Office, PDF or open format doc-
uments, you should use the filter provided by the Document Inspector to in-
spect these documents and block malicious content from entering your corpo-
rate network.

In addition to this filter, you can apply text categorization to these documents.

If you want to use this filter, make sure the checkbox next to the section heading
is marked. The checkbox is marked by default.

After specifying the appropriate settings, click on

Apply Changes

to make

them effective.

Use the following items to configure actions for office documents:

•

Encrypted document found

From the drop-down list provided here, select an action, e. g.

Block

or

Allow

. This action will be taken if the filter detects an inbound office docu-

ment that is potentially malicious.

•

Apply Text Categorization

Mark the checkbox provided here, to apply text categorization actions to
inbound office documents.

3–21