Allow multiple filename extensions?
Jeff Falgout
JFalgout at CO.JEFFERSON.CO.US
Fri Jul 11 16:26:34 IST 2003
>>> Tom Combs <combs at magnet.fsu.edu> 7/11/2003 7:58:13 AM >>>
>Hello,
>
> I'm not clear on the need for denying multiple filename extensions.
> It seems if an attachment contained a virus, it would be checked by
> the virus scanner and either caught or cleared regardless of the
> extension. Does having multiply filename extensions somehow
> circumvent this process?
>
> I'm considering dropping this ruleset:
>
>deny \.[a-z][a-z0-9]{2,3}\s*\.[a-z0-9]{3}$ Found possible
filename hiding
Attempt to hide real filename extension
Would the proper way to allow double extensions be to change the "deny"
to
"allow" or comment out the line?
Jeff
More information about the MailScanner
mailing list