Jump to content

White listing a domain


Chandramathi
Go to solution Solved by Dashke,

Recommended Posts

We, Zoho WorkDrive are a Cloud based Content Collaboration Software provided by Zoho Corporation; check this link - https://www.zoho.com/workdrive/ for more details. Our product has a https://help.zoho.com/portal/kb/articles/external-file-sharing-in-team-folder#To_share_a_file_externally_from_a_Team_Folder which allows files/folders uploaded to WorkDrive and can be shared to everyone on the internet by generating an external link for the file. These hyperlinks are shortened links such as this one https://tdrive.li/J8HFH_WorkDriveDemo. 

Recently some of our customer complained that the following domain https://tdrive.li has been blocked by malwarebytes. Is it possible to whitelist the mentioned domain? And also can you let us know why the above domain has been blacklisted/blocked by malwarebytes?

Link to post
  • 2 weeks later...

in my opinion, "tdrive.li" should not be unblocked. it is a "SHORTENED URL" used for downloading files from "zoho-drive" where anyone can upload any file, including malware, and then use the "tdrive.li" URL for distributing the malware across the internet. it is potentially a huge security-risk.

i am concerned that malwarebytes might simply unblock everything simply because someone requested it without considering that it might not be a good idea to unblock it, making MBG useless.

Link to post
55 minutes ago, redwolfe_98 said:

individuals who want to risk downloading and executing files from zoho-drive can whitelist the URL's on their own individual computers. note the option for "do not block this site again for (downloading) malware"

Your pointy is not valid, as with same think Malwarebytes  should block Onedrive, Dropbox, Mega,  MediaFire, etc file-sharing services

Link to post

Hi @redwolfe_98,
Thank you for sharing your comments. I'd like to inform you that the shortened_url domain itself is not a malicious site and here are the steps we perform to ensure that malware content does not get hosted from Zoho WorkDrive
1. We do have an Anti Virus scan in place which validates the files during upload. So most malwares can not be uploaded to the cloud at all.
2. We also do have a spam and fraudulence detection algorithm in place which identifies if the uploaded files are phishing documents.

So most spamming documents do get filtered out as spam and never get published. Despite our best efforts to identify spam and spammers a few spam files did get published which were duly pulled down. So we do think presence of one or two links should not cause the entire domain "tdrive.li" to be considered a threat. Rather the individual link that had the spam file can be considered a threat.

Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.