Hi i have postfix configured to reject attach files of below.
After running Nessus on my machine i was surprised that nessus could send fake viruses to postfix and the where deliverd in my mailbox.
Do i have a security problem, i think of yes, and how do i fix this?,
according to my postfix setup almost all attachments must be rejected.
postfix main.cf # JUNK MAIL CONTROLS #header_checks = regexp:/etc/postfix/header_checks body_checks = regexp:/etc/postfix/body_checks.regexp mime_header_checks = regexp:/etc/postfix/mime_header_checks.regexp
more mime_header_checks.regexp
/filename=\"?(.*)\.(bat|chm|cmd|com|do|exe|hta|jse|rm|scr|pif|vbe| vbs|vxd|xl)\"?$/
REJECT For security reasons we reject attachments of this type
/^\s*Content-(Disposition|Type).*name\s*=\s*"?(.+\.(lnk|asd|hlp|ocx| reg|bat|c[ho]m|cmd|exe|dll|vxd|pif|scr|hta|jse?|sh[mbs]|vb[esx]|ws [fh]|wav|mov|wmf|xl))"?\s*$/
REJECT Attachment type not allowed. File "$2" has the unacceptable
extension "$3"
Were you running this on localhost? Postfix by default accepts mail from localhost. I believe it also accepts mail from your connected subnets. Try this
(sorry for wrapping. I've indented to try and show that a line is continued)
relayhost =
mynetworks = 127.0.0.0/8, 192.168.1.0/24, 1.2.3.4/32
smtpd_recipient_restrictions = permit_mynetworks,
reject_unauth_destination--
Chris I
HUMAN REPLICAS are inserted into VATS of NUTRITIONAL YEAST ...
pgp00000.pgp
Description: PGP signature
