Buchan Milne <[EMAIL PROTECTED]> writes:
> > integration of spamassassin with postfix
> >
> > possiblity to nuke files with standard virus extension in postfix
> > (.exe, .pif..)
>
> This shouldn't be done out-the-box without user intervention. We
> need a drakmailserver or something.
warly, we may enhance mail server wizard with an "ala drakfirewall"
feature with a list of possible "rejectable" extentions, resulting in
writing in /etc/postfix/header_checks sg like:
# attack double extension ala readme.doc.pif files:
/^Content-(Type|Disposition):.*
(file)?name="?.*\.[A-Za-z0-9]+\.(asd|exe|bat|chm|com|cil|dll|hlp|hta|js|lnk|nws|ocx|pif|reg|scr|sh[bs]|vb|vb[se]|ws[cfh]|msi)"?/
REJECT
# exexutable attachments:
/^Content-(Type|Disposition):.*
(file)?name="?.*\.(asd|exe|bat|chm|com|cil|dll|hlp|hta|js|lnk|nws|ocx|pif|reg|scr|sh[bs]|vb|vb[se]|ws[cfh]|msi)"?/
REJECT
