When it comes to security there is no thing such as "too many measures" we can take. Infected files spread viruses from one device to another rapidly and in an organisation this may result in massive loses, not just monetarily but also reputationally, and your organisation might suffer these consequences for years, in case it even survives the attack.
ServiceNow comes with an Antivirus that scans attachments to help you detect these files and block their spreading. Nonetheless, the Antivirus service might be down or unreachable at some points. Would you still allow your users to download these files even if unscanned?
Configuring the instance
By default the property called "com.glide.snap.infected_download_allowed" comes as "false" nowadays, but it used to come as "true" in the past. That meant people could still download the files if the service wasn't up and running. The recommended value for this property though is "false", which is why by default it is set to such value now.
If you want to be sure your instance is protecting your organisation in this sense, ensure its value is set to "false" and feel free to check out the official documentation entry if you want to know more about it.
Bear in mind if the service wasn't available for any reason your users couldn't download files, but being realistic, that is a fair price to be paid to securing your devices more.
Feedback
I am curious to know about your specific case
- Did you have this property set as "true"?
Please like π and share π this article to your colleagues to ensure they also have their instances configured properly
