Sorry Davis, you confused me there with both comments.
Could you give me a pointer on configuring the content filtering rule to look for Executable Files inside Archive Files?
I'm currently putting them in quarantine if the following condition is met.
|
If text in From/To/Cc/Bcc Address part of the message contains 1 or more occurrences of "dhl.com" |
|
|
AND If the file metadata is in the attachment list "Archive Files" |
If I use this condition:
I can't add Executable Files unless I manually type them all out. That's the closest I can find that probably looks into containers.
Thanks.