Can MWG detect true/apparent file type, or how it's generally called? Like when user is downloading .exe file, but header intentionally contain mime-type text/xml, can the MGAM heuristically detect that it's actually executable?
Yes. It does this with the MediaType.EnsuredTypes feature.
This detects the actual file type based on the bytes inside the file.
I actually used this feature but for some reason it didn't work at first, but now when I tried to download some fake text/xml file it was correctly detected as executable.
Anyway thanks for your quick reply 😉
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center
2821 Mission College Blvd.
Santa Clara, CA 95054 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2019 McAfee, LLC