[EMAIL PROTECTED] wrote:
I also have, because Outlook worms are sending themselves to me from people I know who have my address in their LookOut address book. Thus, the whitelist allows the worms through :-(
# No matter who they're from, always confirm messages which
# might be viruses:
# Either it's really big....
size >2500000 confirm=confirm_exe.txt
# ...or there's an executable attachment....
body 'Content-Type: .*/.*;(.*\n){,5}.*[ ]*name[
]*=.*\.(com|exe|pif|bat|scr|vbs)' confirm=confirm_exe.txtHere's my solution to that, though it's a completely separate issue from a confirming spammer. Someone who actually intended to send me something huge or with an executable attachment still can, by confirming the message. If it's a spoofed address, the confirm message says to ignore the confirm message if you didn't send it.
And what I just realized..... Since TMDA includes the original message up to a certain size, if it's not a big file (.bat, for example?), it includes the attachment in the confirmation. Jason, is there an option to strip attachments when the message is auto-appended?
-- Micha�l A. Bishop
"From silly devotions and sour-faced saints, spare us, O Lord." -St. Teresa of Avila
"A truly good book teaches me better than to just read it. I must soon lay it down and commence living on its hint. What I began by reading, I must finish by acting." -Henry David Thoreau
smime.p7s
Description: S/MIME Cryptographic Signature_____________________________________________ tmda-users mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-users
