Thought I'd pass this onto folks who use Exim & SPAM Assassin. I use
sa-exim with exim4 and for some reason my system filter wasn't working
properly.
Replace this in your
/usr/lib/perl5/site_perl/5.8.0/Mail/SpamAssassin/EvalTests.pm:
if ($name && $ctype ne "application/octet-stream") {
# MIME_SUSPECT_NAME triggered here
...with:
if ($name && $ctype=~/octet-stream/i) {
$name =~ s/.*\.//;
if ($name =~ /^(?:bat|com|exe|pif|scr|swf|vbs|zip)$/i) {
$self->{mime_suspect_name} = 1;
}
} elsif ($name && $ctype ne "application/octet-stream") {
# MIME_SUSPECT_NAME triggered here
...and add this to your /etc/mail/spamassassin/local.cf:
score MICROSOFT_EXECUTABLE 100.0
It's a quick hack that seems to work for me; be careful with it (backup
your EvalTests.pm before performing this edit). No guarantees! :)
-- Justin
