Re: [exim] blocking executable attachments

Top Page
Delete this message
Reply to this message
Author: Peter Velan
Date:  
To: Exim Users Mailing List
Subject: Re: [exim] blocking executable attachments
at 20.07.2005 12:16 Herb Martin wrote:

>> ---
>> deny message = Attachments of type ".$found_extension" not allowed
>> demime = bat : cmd : com : exe : lnk : pif : scr
>> logwrite = :main,reject: bad atachment ($found_extension).
>> ---
>>
>> This works very well; now I would like to do it the "modern
>> way", like:
>>
>> ---
>> deny message = Attachments of type ".$found_extension" not allowed
>> condition = ${if match \
>> {${lc:$mime_filename}} \
>> {\N\.(bat|cmd|com|exe|lnk|pif|scr)$\N} \
>> {yes} {no} \
>> }
>> logwrite = :main,reject: bad atachment ($found_extension).
>
> While you are reviewing this you might wish to consider
> a longer list of dangerous extenstions -- most of these
> that I use are also disallows by Microsoft Word so many
> users would find these unavailable even if they were allowed
> to pass the server:


Herb, thanks for the great lists, I will use it!

BTW: My real list includes more "bad" extensions, I stripped it in my
examples for clarification (nevertheless, your list is far more complete
than mine).

> [... long extension lists snipped ...]


But my problem with the non-working "modern way" still remains :-(

Peter