html-script attachment checking
Steve Spiller
fred at EZCOMPUTERS.CO.UK
Fri Jun 3 12:20:30 IST 2005
[ The following text is in the "ISO-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
I'm new to MailScanner configuration, and want to check something before
I make changes to our working email server after a bad experience with a
slight change to our Firewall.
MailScanner is currently configured to reject all emails which have an
attachment with html scripting (which I understand to be a Good Thing).
Except one of our suppliers insists that they send their RMA form
unzipped, with loads of scripting. They say that their system does not
allow them to compress/rename the form prior to sending. From reading
the archives and manuals, I gather I need to do something like the
following:
1. create a htmlscript.allow.rules (or other name) with the following
contents:
From: 127.0.0.1 no
From: *@awkwardsupplier.com no
FromOrTo: default yes
2. Change MailScanner.conf from:
Allow Script Tags = no
to:
Allow Script Tags = /opt/MailScanner/etc/rules/htmlscript.allow.rules
Am I correct in believing this will allow virus scanning on their
emails, but allow the RMA Form to be received?
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list