blocking %00 / %01 exploits with mailscanner?

Julian Field mailscanner at ecs.soton.ac.uk
Mon Jan 19 22:07:46 GMT 2004


At 22:01 19/01/2004, you wrote:
>At 21:23 19/01/2004, you wrote:
>>On Mon, 19 Jan 2004, Julian Field wrote:
>> > At 20:52 19/01/2004, you wrote:
>> > >Is there a way to get mailscanner to block %00 / %01 uri exploits in the
>> > >body of mails the same way mailscanner can block iframe exploits in
>>the body?
>> > The current best solution is to create a SpamAssassin rule which catches
>> > these and assigns a score of 100.
>>
>>So basically, "no, mailscanner can't do that"? It can block iframe
>>exploits but not URI exploits?

And anyway, I have given you a method of stopping it completely. So the
answer is "yes, it can do that". The method I described is exactly how I
handle it on my own site, and none of my users ever receive a message
containing this exploit.
--
Julian Field
www.MailScanner.info
Professional Support Services at www.MailScanner.biz
MailScanner thanks transtec Computers for their support
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654



More information about the MailScanner mailing list