basic file blocking
—Attach this profile
to the Security policy rules that allow traffic to and from less
sensitive applications to block files that are commonly included
in malware attack campaigns or that have no real use case for upload/download.
This profile blocks upload and download of PE files ( .scr, .cpl, .dll,
.ocx, .pif, .exe) , Java files (.class, .jar), Help files (.chm,
.hlp) and other potentially malicious file types, including .vbe,
.hta, .wsf, .torrent, .7z, .rar, .bat. Additionally, it prompts
users to acknowledge when they attempt to download encrypted-rar
or encrypted-zip files. This rule alerts on all other file types
to give you complete visibility into all file types coming in and
out of your network.