--On Tuesday, August 29, 2006 9:58 AM +0100 Justin Mason <[EMAIL PROTECTED]>
wrote:
I'm sure they know this -- but there are dangers there too. It's pretty
trivial in HTML to craft a MIME part that contains 100 KB of
innocent-looking HTML, followed by 4 KB of spam payload, where the payload
is the only part that's visible.
Rather than specify the limit for objects to be passed to SA, how about
rejecting anything that you consider too big for your scanner? You could do
this on a part-type-basis, so that binaries (ie. images) get a bigger size
allowance than text (including HTML).
