Re: [exim] caution to those blocking files by extension

Top Page
Delete this message
Reply to this message
Author: Stuart Gall
Date:  
To: exim users
Subject: Re: [exim] caution to those blocking files by extension

On 3 Nov 2006, at 15:50, Stephen Gran wrote:

> On Fri, Nov 03, 2006 at 03:34:15PM +0200, Brent Clark said:
>>
>> Hey all
>>
>> I just found a hole / bug in my acl for file extension handling.
>>
>> This is my current ACL
>>
>> # File extension filtering.
>> deny   set acl_m1 = ${extract{-1}{.}{${lc:$mime_filename}}}
>> message  = Disallowed file extension
>> log_message     = REJECTED ATTACHMENT ($acl_m1) (rcpt to:  
>> $recipients)

>>
>> condition       = ${if match{$acl_m1}{\N^(
> [...]
>>                                          )$\N}{1}{0}}

>
> The bug is that you start your regex expects there to be no whitespace
> between the final dot and the beginning of the extension. You'll want
> to allow optional whitespace at the beginning (and probably the
> end) of
> your regex.



Will windoze execute a file that ends in dot-space-space-space-exe ?
dosent the os see this as NOT ending in .exe

I mean the file is getting through because it does not have a .exe
extension which is Ok.


> --
>
> ---------------------------------------------------------------------- 
> ----
> |  Stephen Gran                  | Office Automation:  The use  
> of          |
> |  steve@???             | computers to improve efficiency  
> in the  |
> |  http://www.lobefin.net/~steve | office  by removing anyone you  
> would    |
> |                                | want to talk with over  
> coffee.          |

>
> ----------------------------------------------------------------------
> ----
>
> --
> ## List details at http://www.exim.org/mailman/listinfo/exim-users
> ## Exim details at http://www.exim.org/
> ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
>