How to Remove .mdb files from Unsafe File List

[Mike Schumann]

I am running Windows XP SP2. Since I installed SP2, I can no longer open
..mdb file attachments in Outlook Express. I know I can override this by
changing the "Do not let users open files that may contain viruses" checkbox
in the Options Security Tab of Outlook Express. I don't want to open the
door that wide (it would let people open .exe files, etc.....).

How can I configure XP so that .mdb files are considered safe enough to open
in Outlook Express with the security settings enabled?

Thanks,

 

[Galen]

In Mike Schumann <[email protected]> had this to say:

My reply is at the bottom of your sent message:

I am running Windows XP SP2. Since I installed SP2, I can no longer
open .mdb file attachments in Outlook Express. I know I can override
this by changing the "Do not let users open files that may contain
viruses" checkbox in the Options Security Tab of Outlook Express. I
don't want to open the door that wide (it would let people open .exe
files, etc.....).
How can I configure XP so that .mdb files are considered safe enough
to open in Outlook Express with the security settings enabled?

Thanks,

As OE relies on the unsafe file list for IE you can TRY this:

http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=22493&DisplayTab=Article

Please note that I've never tried it at all. I simply open OE, click on
tools, options, and under security I untick the box to block potentially
unsafe attachments.

--
Galen - MS MVP - Windows (Shell/User & IE)
http://dts-l.org/
http://kgiii.info/

"We approached the case, you remember, with an absolutely blank mind,
which is always an advantage. We had formed no theories. We were simply
there to observe and to draw inferences from our observations." -
Sherlock Holmes

 

[Lanwench [MVP - Exchange]]

In

I am running Windows XP SP2. Since I installed SP2, I can no longer
open .mdb file attachments in Outlook Express. I know I can override
this by changing the "Do not let users open files that may contain
viruses" checkbox in the Options Security Tab of Outlook Express. I
don't want to open the door that wide (it would let people open .exe
files, etc.....).
How can I configure XP so that .mdb files are considered safe enough
to open in Outlook Express with the security settings enabled?

Thanks,

This isn't an XP issue.
Just click Forward on the message with the blocked attachment, and you
should be able to open/save the attachment. This is a better option than
disabling the security features in OE that hid the attachment from you.

 

[Mike Schumann]

I tried the registry changes. They don't work. Maybe I'm doing something
wrong.

Mike Schumann

 

[Mike Schumann]

That doesn't work. If you try to forward the message, Outlook Express
strips out the attachment.

Mike Schumann

"Lanwench [MVP - Exchange]"

 

[Lanwench [MVP - Exchange]]

That doesn't work. If you try to forward the message, Outlook Express
strips out the attachment.

Ah - so you weren't seeing "Outlook Express has blocked access to the
potentially dangerous yaddayaddayadda" ? Sorry; that's the most common
message.

I'm aware of the security model in *Outlook* blocking attachments outright
unless added to the Level 1 list, but as for Outlook Express, I don't use it
for more than news.

You might post in an OE group for any OE questions -
microsoft.public.windows.inetexplorer.ie6_outlookexpress

.....and note that www.insideoe.com is a good resource. Sorry I can't help
further. It still isn't an XP issue per se - it's an IE/OE one.

Mike Schumann

"Lanwench [MVP - Exchange]"

In

This isn't an XP issue.
Just click Forward on the message with the blocked attachment, and you
should be able to open/save the attachment. This is a better option than
disabling the security features in OE that hid the attachment from you.

 

[Guest]

Unfortunately it's hardcoded, which makes the feature virtually useless in an
office environment. It woudl've been better if it had been set to allow
saving but not direct opening, at least that would have given reasonable
security without breaking the system.

 

[Lanwench [MVP - Exchange]]

In

Unfortunately it's hardcoded, which makes the feature virtually
useless in an office environment. It woudl've been better if it had
been set to allow saving but not direct opening, at least that would
have given reasonable security without breaking the system.

I am not certain this is correct, as I've never run into it before, but
remember that a) e-mail is not a good file transfer mechanism and b) most
admins with sense block way more attachment types than just that on mail
servers in corporate environments.

 

[David Kerber]

In

I am not certain this is correct, as I've never run into it before, but
remember that a) e-mail is not a good file transfer mechanism and b) most
admins with sense block way more attachment types than just that on mail
servers in corporate environments.

The best way would have been to always give a warning, but allow the
user to save the file (and NOT execute it directly). That way, the
programmers in our company could pass stuff around from various offices
around the country much more easily than having to zip them up all the
time or change the extensions.

Obviously, people have to know enough not to open something they're not
expecting, no matter who it's from...

 

[cquirke (MVP Windows shell/user)]

Ian Oversnipped said...

The system was broken by whatever moron added auto-running macros to
"data files". Everything else is just reportage.

If you can find a way to obliterate the ability of MS Office to
autorun macros in data files, then we'll talk about the unsafe list
;-)

------------ ----- --- -- - - - -

Drugs are usually safe. Inject? (Y/n)

 

[Mike Schumann]

That "moron" was Microsoft. So we have a bad situation. The solution is
not for Microsoft to be all knowing and force us to configure our systems
based on their gospel of what is right. Particularly, when they leave .doc
files wide open, which can also include macros.

Mike Schumann