For all that are interested. The rules that I mentioned, can be downloaded using the following link.
Just a couple of suggestions:
I'm not an expert at reading IMail rules, but I believe that what you have will block an E-mail with an HTML tag that has "NAME=" in it, with ".com" anywhere after it. You may want to check that; a lot of HTML tags use "NAME=". It may be best to simply remove the .com filters.
The uuencode detection won't work as it stands -- it should be "begin", not "being".
The base64 filename detection won't work with the "space gap" vulnerability (this should be a very minor issue, though).
-Scott
---
Declude JunkMail: The advanced anti-spam solution for IMail mailservers since 2000.
Declude Virus: Ultra reliable virus detection and the leader in mailserver vulnerability detection.
Find out what you've been missing: Ask for a free 30-day evaluation.
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
