On Sat, Apr 15, 2006 at 11:45:40PM +0100, Martyn Clark said: > Hi > I just run mail tests form link Steve was kind enough to send me and only > one got through: this one > (Non-Virus): Attachment with a CLSID extension which may hide the real file > extension. This does not include the EICAR virus, however your mail server > should still block this since the CLSID technique can be used to hide the > true extension of a malicious file. > > Is there a rule I can set somewhere to prevent this type of getting through?
That is entriely MTA dependant. I could probably tell you how to do it for exim, but I doubt that's on topic for this list. I suggest following up with a mailing list suitable for the MTA you use. Take care, -- -------------------------------------------------------------------------- | Stephen Gran | Sweet sixteen is beautiful Bess, And | | [EMAIL PROTECTED] | her voice is changing -- from "No" to | | http://www.lobefin.net/~steve | "Yes". | --------------------------------------------------------------------------
signature.asc
Description: Digital signature
_______________________________________________ http://lurker.clamav.net/list/clamav-users.html
