Hello,
I put the following in the DATA ACL:
deny message = Hiding of file extensions is
not allowed
log_message = Dangerous extension (CLSID
hidden)
regex =
^(?i)Content-Disposition::(.*?)filename=\\s*"+((\{[a-hA-H0
-9-]{25,}\})|((.*?)\\s{10,}(.*?)))"+\$
However, CLSID attachments still make it through. What
else do I need to block CLSID attachments?
I got the above code by searching for - exiscan CLSID
- via Google.
The line wraps are due to posting. They are properly
placed placed in the ACL file.
Thanks,
Guru
__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - 100MB free storage!
http://promotions.yahoo.com/new_mail
