User Tools

Site Tools


squid:alerts:et_policy_pe_exe_or_dll_windows_file_download_http

This is an old revision of the document!


Squid - Alerts:ET POLICY PE EXE or DLL Windows file download HTTP

The “ET POLICY” part of the alert is telling you that it's a 'Policy' rule: i.e. it's not an attack per se, it's just something which might violate a corporate policy.

That particular alert is just telling you that someone has downloaded a Windows executable file or DLL over HTTP.

In most cases this is just noise, unless you've prohibited downloading of executable files in your environment.

squid/alerts/et_policy_pe_exe_or_dll_windows_file_download_http.1586261754.txt.gz · Last modified: 2020/07/15 09:30 (external edit)

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki