Loading...

Knowledge Center


How to add exclusions for specific Packer types in Security for Microsoft Exchange
Technical Articles ID:   KB81446
Last Modified:  2/13/2019

Environment

McAfee Security for Microsoft Exchange (MSME) 8.6.x, 8.5.x, 8.0.2
Microsoft Exchange 2016, 2013, 2010, 2007

For product supported environments, see KB76903.

Problem

MSME inadvertently blocks Packers when they should be allowed through.

NOTE: See the Related Information section of this article for the definition of a Packer.

Cause

The Packer type has been incorrectly specified in the MSME configuration. When you configure MSME to exclude Packers, you must define the exclusion as the Packer type, for example: UPX. If you specify the actual file name or variations of the Packer type, such as *.upx or "UPX," MSME fails to exclude the file.

Solution

To add a Packer exclusion:

NOTES: 
  • To determine the Packer type detected, see the Detections line in the replacement alert file, warning.txt, attached to the blocked email.
  • If the server is ePolicy Orchestrator (ePO) managed, you must set the Packer Type Exclusion in the Scanner Settings policy assigned to the MSME Servers.
  1. Click Start, All Programs, McAfee, McAfee Security for Microsoft Exchange Product Configuration.
  2. In the left pane, click Policy Manager, On-Access.
  3. Select Master PolicyAnti-Virus Scanner.
  4. In the Options panel, click Edit.
  5. Under the Packers tab, select Exclude specified names.
  6. Add the Packer type to be excluded, for example UPX.
  7. Click AddSave, and then click Apply.

Rate this document

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms


 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.