Microsoft engineers reportedthat will soon significantly expand the list of extensions that cannot be used in Outlook on the web (formerly Outlook Web Access, OWA). Previously, the list already included 104 extensionsand now 38 more will replenish it.
After adding extensions to the blocked list, users will not be able to download files of any of these types from their mailboxes, unless the administrator of Outlook / Exchange specifically puts them in the white list.
The developers claim that new extensions that add to the blacklist are used very rarely, and therefore the changes should not affect the work of most organizations.
38 new file extensions that will soon be banned:
- Java files:.jar, .jnlp
- Python files:.py, .pyc, .pyo, .pyw, .pyz, .pyzw
- files PowerShell:.ps1, .ps1xml, .ps2, .ps2xml, .psc1, .psc2, .psd1, .psdm1, .psd1,. psdm1
- digital certificates:.cer, .crt, .der
- files used to exploit bugs in third-party software:.appcontent-ms, .settingcontent-ms, .cnt, .hpj, .website, .webpnp, .mcf, .printerexport, .pl, .theme, .vbp, .xbap, .xll, .xnk, .msu,. diagcab, .grp
It is emphasized that administrators of Office 365, Exchange Online, or Exchange Server can whitelist any of 142 blocked extensions at any time by following instructions.