Autor: James Price Data: A: exim-users Assumpte: Re: [exim] Stripping attachments on malware condition
I agree, I already do that and it works nicely. My thoughts for this
are more for 2 scenarios.
1. demime condition on a blocked file type, many of these messages to
my users are legit but they sent a blocked file type. I'd like to
clean the message of the file and deliver the message.
2. malware condition, would like to be able to strip the attachment
and then deliver safe such as spamassassin does with SPAM, though of
the 2 scenarios, number 1 is my priority.
Thanks,
James
Ted Cooper wrote:
James Price wrote:
I'm sure this has been asked before and I'm sure there are many ways to
do this. From my research I've come up with a few methods and I'm
looking to see what sort of feedback I get.
The options I see that seem to be best suited to what I'm looking to do
is either piping mail to altermime, procmail, or using an exim filter.
Ultimately, I want to drop the attachment from the message malware is
detected.
Any thoughts?
Using Exim 4.6.9/SpamAssassin/ClamAV as a mail gateway.
If it's malware, you shouldn't deliver any part of it to the user. I
have not seen a legitimate file infected with a virus in well over 10 years.
