Scanning of Attachments

kurt9 · ‎08-03-2015

Does ServiceNow do any scanning of attachments for malware/viruses when they are uploaded by a user? If so, what is done?

eddy42 · ‎08-03-2015

I do not believe ServiceNow do any kind of virus scanning of attachments. It is just storing whatever is uploaded within the database. Their recommendation is to restrict file types to those which are not likely to pose a threat:

Administering Attachments - ServiceNow Wiki (see section 5)

kurt9 · ‎08-04-2015

Yes, I've seen this, but was wondering if they did any scanning. I am a bit confused by their last sentence; "If no extensions are specified, then all extensions are allowed. However, if any extensions are specified, all unlisted extensions are restricted."If no extensions are specified, then all extensions are allowed. However, if any extensions are specified, all unlisted extensions are restricted". it seems to read that if you do not specify any extensions, then everything is allowed and if you list any extensions, then EVERYTHING is disallowed. That doesn't seem like it makes sense. If you specify one extension, then you cannot make any attachments?

jcote · ‎08-04-2015

I have not found anything on the wiki that explicitly answers your question. This might be a better request/question for the ServiceNow Customer Support team.

You can create an incident via the HI Portal (www.hi.service-now.com).

gyedwab · ‎08-04-2015

Hi Kirt,

If you do not specify any extensions, then everything is allowed. If you only list ".docx", then all unlisted extensions (everything except .docx) are not allowed.