|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Kohei Yoshida (kyoshida
mesco.com)Date: Mon Oct 01 2001 - 16:01:49 CDT
On Monday 01 October 2001 15:11, you wrote:
> Hello,
>
> I noticed a problem that allows users to bypass body checks on incoming
> email.
>
> I have a filter setup to block numerous attachments:
>
> /name=\"(.*)\.(hta|exe|com|pif|vbs|vbe|js|jse|bat|cmd|vxd|scr|shm|pif|chm)\
>" $/ REJECT
>
> The filter works great 99% of the time, however, if an email is constructed
> without text in the body of the email, the attachment is passed through.
>
> Hopefully this is just an error in the way I choose to block attachments.
> Either way I felt like you should know about it, and appreciate your input.
>
> -Ryan Sweat
>
> -
> To unsubscribe, send mail to majordomopostfix.org with content
> (not subject): unsubscribe postfix-users
It could be because some MTAs don't quote the name of an attachment. I can
see that for an email with attachment to be rejected by the above line alone,
the name needs to be quoted.
Kohei Yoshida
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]