Ftp Users » Tab; Analyzing Files" Tab; Sandboxing" Tab - Stormshield SN series Configuration Manual

XMKD: This command creates a new folder. It accepts one or several arguments. By default,
l
a scan will be performed to check RFC compliance if the option "Enable modification
commands" has been enabled. Otherwise, the command will be blocked.
XRMD: This command deletes the given folder. It accepts one or several arguments. By
l
default, a scan will be performed to check RFC compliance if the option "Enable modification
commands" has been enabled. Otherwise, the command will be blocked.
« FTP Users » tab
List of users
Allowed users
FTP users can be defined in the intrusion prevention module (limited to 127 characters) by
clicking on Add. They are limited to 115 characters and can be deleted when needed.
Denied users
FTP users can be prohibited in the intrusion prevention module (limited to 127 characters) by
clicking on Add. They are limited to 115 characters and can be deleted when needed.

"Analyzing files" tab

Maximum size for
antivirus and
sandboxing scan (KB)
Analyzing files
Actions on files
When a virus is
detected
When the antivirus
scan fails
When data collection
fails

"Sandboxing" tab

Sandboxing
Status
Page 271/448
In this field, the maximum size used for scanning files can be determined. Move the
scale to do so. You can also configure the action to perform if the file exceeds the
authorized size.
WARNING
When manually defining a size limit for analyzed data, ensure that all values
are coherent. The total memory space, represented by the scale, corresponds
to a common space for all the resources reserved for the Antivirus service. If
you define the size limit for analyzed data on SMTP as 100% of the total size, no
other files can be analyzed at the same time.
This option allows choosing the type of file that needs to be scanned: "downloaded
and sent" files; "downloaded only" or "sent only" files.
This field contains 2 options. "Pass" and "Block". By selecting "Block", the analyzed file
will not be sent. By selecting "Pass", the antivirus will send the file in its original form.
This option defines the behavior of the antivirus module if the analysis of the file it is
scanning fails.
Example
The file could not be scanned as it has been locked.
If Block has been specified, the file being scanned will not be sent.
If Pass without scanning has been specified, the file being scanned will be sent.
This option defines the behavior of the antivirus module when certain events occur. It
is possible to Block traffic when information retrieval fails, or Pass without scanning.
This column displays the status ( Enabled/ Disabled) of sandboxing for the
corresponding file type. Double-click on it to change its status.
SNS - USER CONFIGURATION MANUAL V.3
sns-en-user_configuration_manual-v3 - Copyright © Stormshield 2016
PROTOCOLS