\. in filename.rules.conf

Julian Field mailscanner at ecs.soton.ac.uk
Mon Feb 9 21:37:15 GMT 2004


At 21:22 09/02/2004, you wrote:
>Julian Field wrote:
> >
> > At 20:58 09/02/2004, you wrote:
> > >I see the following in filename.rules.conf:
> > >
> > >deny    pretty\s+park\.exe$
> > >deny    happy99.exe$
> > >deny    webpage\.rar$
> > >
> > >Is the \ required before . ?
> >
> > Yes, otherwise it wouldn't be there. They are regular expressions. "."
> > means any character. "\." means the literal character "."
>
>So, since it isn't there, I will assume it is not a typo when you have
>"happy99.exe$" in filename.rules.conf, rather than "happy99\.exe$"?  :-)
>
> > >deny    ^doc.zip$       -       -
> > >
> >
> > That will match filenames which are exactly "doc.zip" as ^ means the start
> > of the filename and $ means the end of the filename.
>
>I know, but...
>
> > Suggest you read up a
> > bit on regular expressions. "man perlre" will get you started.
>
>I felt pretty comfortable with regular expressions, but not seeing the \
>in "happy99.exe$" made me think twice and though you might be doing
>something else.

Yes, a typo.


> > What I
> > suspect you mean is to block any filename ending in ".doc.zip" which is
> > deny    \.doc\.zip$     -       -
>
>Nope, just wanted "doc.zip" to be blocked...along with message.zip,
>document.zip, data.zip, text.zip, file.zip and test.zip, since these
>sometimes get past MailScanner/Sophos.

Then I think there's an allow line for *.zip. Change the allow to deny and
put in some explanatory text in the last 2 fields of the line.
--
Julian Field
www.MailScanner.info
Professional Support Services at www.MailScanner.biz
MailScanner thanks transtec Computers for their support
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654



More information about the MailScanner mailing list