Jump to content
Chandramathi

ANSWERED White listing a domain

Recommended Posts

We, Zoho WorkDrive are a Cloud based Content Collaboration Software provided by Zoho Corporation; check this link - https://www.zoho.com/workdrive/ for more details. Our product has a https://help.zoho.com/portal/kb/articles/external-file-sharing-in-team-folder#To_share_a_file_externally_from_a_Team_Folder which allows files/folders uploaded to WorkDrive and can be shared to everyone on the internet by generating an external link for the file. These hyperlinks are shortened links such as this one https://tdrive.li/J8HFH_WorkDriveDemo. 

Recently some of our customer complained that the following domain https://tdrive.li has been blocked by malwarebytes. Is it possible to whitelist the mentioned domain? And also can you let us know why the above domain has been blacklisted/blocked by malwarebytes?

Share this post


Link to post

in my opinion, "tdrive.li" should not be unblocked. it is a "SHORTENED URL" used for downloading files from "zoho-drive" where anyone can upload any file, including malware, and then use the "tdrive.li" URL for distributing the malware across the internet. it is potentially a huge security-risk.

i am concerned that malwarebytes might simply unblock everything simply because someone requested it without considering that it might not be a good idea to unblock it, making MBG useless.

Share this post


Link to post

as can be seen in the screenshot, it is easy to continue to the website (or whatever the link is pointing to) without whitelisting the URL. MBG just shows a warning that downloading files from the website is a (huge) security-risk.

zohodrive1.jpg

Share this post


Link to post

individuals who want to risk downloading and executing files from zoho-drive can whitelist the URL's on their own individual computers. note the option for "do not block this site again for (downloading) malware"

Share this post


Link to post
55 minutes ago, redwolfe_98 said:

individuals who want to risk downloading and executing files from zoho-drive can whitelist the URL's on their own individual computers. note the option for "do not block this site again for (downloading) malware"

Your pointy is not valid, as with same think Malwarebytes  should block Onedrive, Dropbox, Mega,  MediaFire, etc file-sharing services

Share this post


Link to post

Hi @redwolfe_98,
Thank you for sharing your comments. I'd like to inform you that the shortened_url domain itself is not a malicious site and here are the steps we perform to ensure that malware content does not get hosted from Zoho WorkDrive
1. We do have an Anti Virus scan in place which validates the files during upload. So most malwares can not be uploaded to the cloud at all.
2. We also do have a spam and fraudulence detection algorithm in place which identifies if the uploaded files are phishing documents.

So most spamming documents do get filtered out as spam and never get published. Despite our best efforts to identify spam and spammers a few spam files did get published which were duly pulled down. So we do think presence of one or two links should not cause the entire domain "tdrive.li" to be considered a threat. Rather the individual link that had the spam file can be considered a threat.

Share this post


Link to post

It has been whitelisted.

Share this post


Link to post

All non-standard TLD's are blocked by default by Malwarebytes Browser Guard, so basically any TLD other than the most common ones such as .com and .net etc.  It is aggressive, but also most effective since a large portion of malicious sites use non-standard TLD's due to their lower cost/easier access.

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.