On 8/20/07, Jordi Espasa Clofent <[EMAIL PROTECTED]> wrote:
> HI all,
>
> My goal is that my users (who are authenticated by SASL) can't send any
> .exe attached file. So, in my amavis.conf config file I've got the next
> code:
>
> $policy_bank{'SASLBYPASS'} = { # mail from submission and smtps ports
> bypass_spam_checks_maps => [1], # don't spam-check this mail
> bypass_header_checks_maps => [1], # don't header-check this mail
> banned_filename_maps => [
> new_RE(
> # block double extensions in names:
> qr'\.[^./]*\.(exe|vbs|pif|scr|bat|cmd|com|cpl|dll)\.?$'i,
> # allow any name or type (except viruses) within an archive:
> [ qr'^\.(Z|gz|bz2|rpm|cpio|tar|zip|rar|arc|arj|zoo)$' => 0],
> # blocks MS executable file(1) types, unless allowed above:
> qr'^\.(exe-ms)$',
> ),
> ],
> };
>
> Aug 20 12:30:07 mail amavis[301]: (00301-02) Passed CLEAN, SASLBYPASS
> [192.168.1.17] [192.168.1.17]
> <[EMAIL PROTECTED]> -> <[EMAIL PROTECTED]>, Message-ID:
> <[EMAIL PROTECTED]>,
> mail_id: hSDAJwrwiKYX, Hits: -, size: 1401577, queued_as: ECDE4D50054,
> 7925 ms
For some reason I'm stuggling with this too. At log_level 5 I get:
Aug 20 11:45:21 mail amavis[1104]: (01104-01) skipping banned check:
no applicable lookup tables
Aug 20 11:45:21 mail amavis[1104]: (01104-01) banned check: any=0, all=N (1)
and mail passes clean.
--
Gary V
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
