I was hoping to get some feedback how you(your org) deals with attachment filtering. Currently we simply drop messages with things like .exe, .url etc... The problem is users never know they were sent a message. I've though about attachment stripping, but read in a previous thread that doing this essentially bypasses the Outbreak filters. Then if there is an outbreak users get hammered with what looks like spam.
I'm considering sending a bounce to the sender, but then you've got problems with spoofed addresses etc.
So what's the general opinion on the best way to handle filtered attachments? (And please, I don't want to hear it depends on your organization)
Thanks in advance!