 |
 |
 |
 |
| Servers & Networking Discuss any Fedora server problems and Networking issues such as dhcp, IP numbers, wlan, modems, etc. |
24th March 2007, 08:16 PM
|
|
Registered User
|
|
Join Date: Feb 2007
Location: Italy
Posts: 9
|
|
|
amavisd-new 2.4.4 on FC5 BANNED attachment problem
Hi all,
I have got a postfix mail server with amavisd-new 2.4.4-2.fc5 installed.
Whenever I try to send an mail with ZIP type attachment (containing exe files), the mail is bounced with a BANNED MAIL message.
I would like to send mail with ZIP (or other archive format) whatever the archive content (e.g. exe files),
The better would be that amavisd-new continues bouncing inbound message with that attachment type.
Can anyone help me ?
Thanks
--
http://www.ndatech.it
|
25th March 2007, 03:07 AM
|
|
Registered User
|
|
Join Date: Feb 2005
Location: CALIFORNIA, yeah
Age: 86
Posts: 1,657
|
|
If you go into /etc/amavisd/amvisd.conf, have a look at the file extensions that would be banned. I am no expert at regular or pcre expressions, but this would be a good place to start.
Code:
### BLOCKED ANYWHERE
# qr'^UNDECIPHERABLE$', # is or contains any undecipherable components
qr'^\.(exe-ms|dll)$', # banned file(1) types, rudimentary
# qr'^\.(exe|lha|tnef|cab|dll)$', # banned file(1) types
### BLOCK THE FOLLOWING, EXCEPT WITHIN UNIX ARHIVES:
# [ qr'^\.(gz|bz2)$' => 0 ], # allow any in gzip or bzip2
[ qr'^\.(rpm|cpio|tar)$' => 0 ], # allow any in Unix-type archives
qr'.\.(pif|scr)$'i, # banned extensions - rudimentary
# qr'^\.zip$', # block zip type
### BLOCK THE FOLLOWING, EXCEPT WITHIN ARHIVES:
# [ qr'^\.(zip|rar|arc|arj|zoo)$'=> 0 ], # allow any within these archives
qr'^application/x-msdownload$'i, # block these MIME types
qr'^application/x-msdos-program$'i,
qr'^application/hta$'i,
# qr'^message/partial$'i, # rfc2046 MIME type
# qr'^message/external-body$'i, # rfc2046 MIME type
# qr'^(application/x-msmetafile|image/x-wmf)$'i, # Windows Metafile MIME type
# qr'^\.wmf$', # Windows Metafile file(1) type
# block certain double extensions in filenames
qr'\.[^./]*[A-Za-z][^./]*\.(exe|vbs|pif|scr|bat|cmd|com|cpl|dll)\.?$'i,
# qr'\{[0-9a-f]{8}(-[0-9a-f]{4}){3}-[0-9a-f]{12}\}?'i, # Class ID CLSID, strict
# qr'\{[0-9a-z]{4,}(-[0-9a-z]{4,}){0,7}\}?'i, # Class ID extension CLSID, loose
qr'.\.(exe|vbs|pif|scr|cpl)$'i, # banned extension - basic
# qr'.\.(exe|vbs|pif|scr|cpl|bat|cmd|com)$'i, # banned extension - basic+cmd
# qr'.\.(ade|adp|app|bas|bat|chm|cmd|com|cpl|crt|emf|exe|fxp|grp|hlp|hta|
# inf|ins|isp|js|jse|lnk|mda|mdb|mde|mdw|mdt|mdz|msc|msi|msp|mst|
# ops|pcd|pif|prg|reg|scr|sct|shb|shs|vb|vbe|vbs|
# wmf|wsc|wsf|wsh)$'ix, # banned ext - long
__________________
Ziggy
|
25th March 2007, 09:49 AM
|
|
Registered User
|
|
Join Date: Feb 2007
Location: Italy
Posts: 9
|
|
Hi Ziggy,
I already looked at that piece of file and, as you, I think this is the right place to go.
But I'm not really sure about the modification to do... so I hoped in some external help.
Thank you anyway... I'll try some configuration on a test machine.
Thanks again
--
http://www.ndatech.it
|
| Thread Tools |
Search this Thread |
|
|
|
| Display Modes |
 Linear Mode
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
Current GMT-time: 12:00 (Wednesday, 22-05-2013)
|
|
 |
 |
 |
 |
|
|
