|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: header_check: regexp or PCRE? false positives?
From: Roger B.A. Klorese (rogerk
queernet.org)
Date: Mon Jan 03 2005 - 14:11:53 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Matt wrote:
> No. I know I'll probably get slapped down on this, but anchoring the .com
>to the end of the line leaves you open to crap getting through. Many
>undesirable mails have multiple filenames to try bypassing this very sort
>of thing.
>
>
By "multiple filenames" do you mean that the one attachment has multiple
"name=" clauses, or something else?
> At the end of the day, is that actually a legitimate mail that you are
>blocking?
>
>
Yes -- it's a jpeg forwarded from a website via a Yahoo Groups list to
which one of my users subscribes, and the attachment references the
original site's URL. We have the same problem, by the way, when a
Majordomo 2 bounce from a user at a .com site is forwarded as an
attachment....
It's aggravated by Yahoo Groups' idiotic bounce-handling, in which any
5xx causes mail delivery to be disabled.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]