Long file names -- truncated?
Raymond Dijkxhoorn
raymond at PROLOCATION.NET
Sat Sep 13 02:25:26 IST 2003
Hi!
> report. Imagine what would happen if someone encoded an entire MIME
> attachment in the filename of another (harmless, but blocked) attachment.
> It is quite possible that if someone managed to figure out a way of doing
> this, they could persuade it to put a dangerous attachment in the
> MailScanner report. I don't know if that is possible, but it *could* be.
> And if it *is*, then someone will work out how, and will do it. I always
> try to write code with a view as to how it could be attacked and broken.
But is it safe to put that in your system logs ? There its showing the
full one if i am correct ?
Bye,
Raymond.
More information about the MailScanner
mailing list