On Thu, 2005-09-08 at 13:16 +0200, armin langhofer wrote: > hi there > > as i'm sending a .exe file zipped as a .zip file through amavis the mail > gets rejected because .exe files are probibited.
Good! That will kill off many day-zero viruses. > > is there a way to allow .exe files IN a .zip file but not as a .exe > attachment? Yes, if you don't want to be protected from many viruses. The precise recipe has been posted here a couple of times. If you really want to be secure, just pgp encrypt the executable with the public key of the recipient. amavisd will leave it alone, and you can be virtually certain that no worm will go to that effort. The fix you have asked for, however, can be done as follows (quoting Mark Martinec from 21 June 2005): > Yes, this is possible in recent versions. (previously the > syntax and intention was there, but the implementation > was encountering undesired interaction between banning > names/types/mime-types). Use 2.3.2-pre1 or 2.3.1 if > you need that functionality correctly implemented. > > Just place a rule: > [ qr'^\.zip$'=> 0 ], > _before_ a rule that is blocking executables. > Scanning from mail root to its leaves, the .zip rule > will be encountered first and rules for zip members > won't be tried. -- Daniel J McDonald, CCIE # 2495, CNX, CISSP # 78281 Austin Energy [EMAIL PROTECTED] ------------------------------------------------------- SF.Net email is Sponsored by the Better Software Conference & EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf _______________________________________________ AMaViS-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/howto/
