Patrick T. Tsang schrieb:
>
> The .exe is banned in amavis but it still penetrates to the mailboxes.
> in /etc/amavisd.conf:
> ...
> # block certain double extensions anywhere in the base name
> qr'\.[^./]*\.(vbs|pif|scr|bat|cmd|com|cpl|dll|exe)\.?$'i,
The comment text claims too much, the expression blocks any occurrence
of ".exe" in the name, not any occurence of "exe".
The latter would be dangerous because it might well be part of a
legitimate file name aka "executive summary". Please have a look at the
new blocking syntax in the sample config provided with amavisd-new; by
combination of rules you will be able to block this case.
Hope this helps,
Jakob Curdes
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
![Re: [AMaViS-user] skipped check of .gif.exe attachment](/search?l=amavis-user@lists.sourceforge.net&q=subject:%22Re%5C%3A+%5C%5BAMaViS%5C-user%5C%5D+skipped+check+of+.gif.exe+attachment%22&o=newest){kind=link}
