Ralf Hildebrandt put forth on 11/3/2009 8:32 AM:
> * Stan Hoeppner <s...@hardwarefreak.com>:
> 
>> Anyone have a filter they'd like to share that rejects mail at smtp
>> based on known malicious attachment file types?
> 
> Of course .)
> 
> mime_header_checks:
> 
> /name=\"(.*)\.(386|bat|chm|cpl|cmd|com|do|exe|hta|jse|lnk|msi|ole)\"$/
>    REJECT Unwanted attachment/Unerwuenschter Anhang $1.$2 -- 
> http://webmail.charite.de/doku/faq/#3
> 
> /name=\"(.*)\.(pif|reg|rm|scr|shb|shm|shs|sys|vbe|vbs|vxd|xl|xsl)\"$/
>    REJECT Unwanted attachment/Unerwuenschter Anhang $1.$2 -- 
> http://webmail.charite.de/doku/faq/#3


Thanks Ralf.  Is smtpd_recipient_restrictions the appropriate place to
put mime_header_checks, like this?

smtpd_recipient_restrictions =
        mime_header_checks = pcre:/etc/postfix/mime_header_checks

/etc/postfix/mime_header_checks

/name=\"(.*)\.(386|bat|chm|cpl|cmd|com|do|exe|hta|jse|lnk|msi|ole)\"$/
        REJECT Unwanted attachment $1.$2
/name=\"(.*)\.(pif|reg|rm|scr|shb|shm|shs|sys|vbe|vbs|vxd|xl|xsl)\"$/
        REJECT Unwanted attachment $1.$2

BTW, I can't tell--are these regexp or pcre format?

--
Stan

Reply via email to