Something like dansguardian might do the trick. >If you could do regex based on the MIME filename field or the whole mime replied header, then you can filter something like >"filename=.*\.exe" stopping all .exe downloads, but you cant.
> >You have the MIME type from the logs you showed us > >(application/octet-stream) - just block that using rep_mime_type and > >http_reply_access except for certain whitelisted sites. > > >>If you block all "application/octet-stream", you destroy the users webs acces blocking all kind of files, for example many swf >>(flash) and css files are download as "application/octet-stream".
