Re: [exim] blocking executable attachments

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Kirill Miazine
Date:  
À: exim-users
Sujet: Re: [exim] blocking executable attachments
* Peter Velan [2005-07-20 16:27]:
> > # MIME-ACL: File extension filtering.
>     ^^^^^^^^
> Oops, I'm afraid I must place the "modern" deny-statement in a new (to
> be defined) ACL-section!

>
> Presently I have 2 ACL-sections:
>
> - acl_smtp_rcpt = acl_check_rcpt (1)
> - acl_smtp_data = acl_check_content (2)
>
> ... and my "bad attachment" ACL-definition resides in (2)
>
> Explicitly asking: Could I place this ...
> ---
> deny message = Attachments of type ".$found_extension" not allowed
> condition = ${if match \
> {${lc:$mime_filename}} \
> {\N\.(bat|cmd|com|exe|lnk|pif|scr)$\N} \
> {yes} {no} \
> }
> logwrite = :main,reject: bad atachment ($found_extension).
> ---
> ... in acl_smtp_data, or have I to create a new section? If a new
> section must be created, which kind of ACL?


You have to place it in acl_smtp_mime.

Note: $found_extension is empty unless you use "demime" (which you do
not).

-- 
    -- Kirill Miazine <km@???>