Re: [Cooker] [Mandrake 10] enhancing mail server wizard

Fri, 03 Oct 2003 05:10:16 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Thierry Vignaud wrote:
> Buchan Milne <[EMAIL PROTECTED]> writes:
>
>
>>>integration of spamassassin with postfix
>>>
>>>possiblity to nuke files with standard virus extension in postfix
>>>(.exe, .pif..)
>>
>>This shouldn't be done out-the-box without user intervention. We
>>need a drakmailserver or something.
>
>
> warly, we may enhance mail server wizard with an "ala drakfirewall"
> feature with a list of possible "rejectable" extentions, resulting in
> writing in /etc/postfix/header_checks sg like:
>
> # attack double extension ala readme.doc.pif files:
> /^Content-(Type|Disposition):.*
(file)?name="?.*\.[A-Za-z0-9]+\.(asd|exe|bat|chm|com|cil|dll|hlp|hta|js|lnk|nws|ocx|pif|reg|scr|sh[bs]|vb|vb[se]|ws[cfh]|msi)"?/
       REJECT
>
> # exexutable attachments:
> /^Content-(Type|Disposition):.*
(file)?name="?.*\.(asd|exe|bat|chm|com|cil|dll|hlp|hta|js|lnk|nws|ocx|pif|reg|scr|sh[bs]|vb|vb[se]|ws[cfh]|msi)"?/
       REJECT
>

It might be nice to reject the attachment with an error message stating
the reason:

/^Content-(Type|Disposition):.*
(file)?name="?.*\.(asd|exe|bat|chm|com|cil|dll|hlp|hta|js|lnk|nws|ocx|pif|reg|scr|sh[bs]|vb|vb[se]|ws[cfh]|msi)"?/
       REJECT Files of type .${3} not permitted

Maybe the message could be defined in the wizard?

Of course, full configuration using Libconf would be even better.

Regards,
Buchan

- --
|--------------Another happy Mandrake Club member--------------|
Buchan Milne                Mechanical Engineer, Network Manager
Cellphone * Work            +27 82 472 2231 * +27 21 8828820x202
Stellenbosch Automotive Engineering         http://www.cae.co.za
GPG Key                   http://ranger.dnsalias.com/bgmilne.asc
1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/fWbmrJK6UGDSBKcRAmSEAKCZqOsO6Km53ynBlQ/o6ExWyvuDlQCff+kD
I00mcwRNN2uiU9JtAvS6Izo=
=Q7Ym
-----END PGP SIGNATURE-----

*****************************************************************
Please click on http://www.cae.co.za/disclaimer.htm to read our
e-mail disclaimer or send an e-mail to [EMAIL PROTECTED] for a copy.
*****************************************************************

Reply via email to