scanning for filetype?

Patterson S.R. S.R.Patterson at SOTON.AC.UK
Fri May 31 10:24:18 IST 2002


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> -----Original Message-----
> From: Wolfgang Lumpp [mailto:wolfgang.lumpp at GMX.NET]
> Sent: 31 May 2002 08:05
> To: MAILSCANNER at JISCMAIL.AC.UK
> Subject: Re: scanning for filetype?
>
>
> Nick Phillips sagte:
> > On Thu, May 30, 2002 at 10:15:31PM -0500, ISP List wrote:
> >
> > No, I think he wanted to test by extension and content, to
> make sure
> > that people couldn't send dodgy stuff by just changing the
> > extension...
> >
> > Whatever...
> >
> Hi,
>
> thats right. We want to block video and audio filetypes.

Hmm interesting idea... As well as running Perl, breaking apart the
message, checking filenames, running sendmail, running sophos up to
twice (or other AV), checking the RBL, running spamassasin,
reconstructing the message and emailing the sender let's also run
"file" on each attachment, parse the output and then decide what to do
with the file.  Obviously this would require everyone to have a
standard "magic" list, or perhaps we could parse the responses from
"file" for each major UNIX?  Or perhaps, on reflection, we could just
scan for viruses and enforce site policies another way? :)

- --
Steven Patterson, MSci.  Tel: +44 (0)2380 595810
Electronic Information Systems Support and Development
Computing Services, University of Southampton, UK.
Public PGP Key: http://www.soton.ac.uk/~srp/pubkey.asc

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.4

iQA/AwUBPPdBQK2fOiTs5+WvEQJ/KgCg4MjNiwLrcmtjji9na9SnFikmhpEAnj8I
QUsDsHcjQ0TY2PXVCTP9+z6k
=AbY/
-----END PGP SIGNATURE-----



More information about the MailScanner mailing list