Re: header check for '.com' blocks non-exec with url in file name

2009-02-25 Thread LuKreme
On 25-Feb-2009, at 15:59, Voytek Eymont wrote: [1]# grep hc2 * header_checks:/^Content-(Disposition|Type):\s+.+?(file)?name=?.+? \.com(\.\S{2,4})?(\?=)??(;|$)/ REJECT hc2 .com file attachment types not allowed First off, i think you want mime_header_checks main.cf: mime_header_checks

Re: header check for '.com' blocks non-exec with url in file name

2009-02-25 Thread LuKreme
On 25-Feb-2009, at 16:31, LuKreme wrote: /^\s*Content-(Disposition|Type).*name\s*=\s*?(.*\.(ade|adp|bas|bat| chm|cmd|com|cpl|crt|dll|exe|hlp|hta|inf|ins|isp|js|jse|lnk|mdb|mde| mdt|mdw|msc|msi|msp|mst|nws|ops|pcd|pif|prf|reg|scf|scr\??|sct|shb|

Re: header check for '.com' blocks non-exec with url in file name

2009-02-25 Thread Voytek Eymont
On Thu, February 26, 2009 10:31 am, LuKreme wrote: First off, i think you want mime_header_checks main.cf: mime_header_checks = pcre:$config_directory/mime_headers.pcre LuKreme, thanks. ahem, what else might be worthwile to put into mime header check ? single rule mime header check seems

Re: header check for '.com' blocks non-exec with url in file name

2009-02-25 Thread Jan P. Kessler
Voytek Eymont schrieb: ahem, what else might be worthwile to put into mime header check ? single rule mime header check seems lonely... http://en.wikipedia.org/wiki/KISS_principle