Best practice

Fri Oct 14 23:12:24 IST 2005

    [ The following text is in the "ISO-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

Matt Hampton spake the following on 10/13/2005 5:33 PM:
> Scott Silva wrote:
> 
>> But wouldn't blocking executables by filetype catch anything that could
>> be executable? Even if the filename is obscured?
>> The file command is pretty good with dos and windows executables, no
>> matter the extension. I usually catch the newer viruses here as their
>> signatures are written and distributed through the virus scanner
>> channels.
>>  
>>
> Still testing the code but I am implementing a safe filename/filetype
> function.  If the file extension ends .pdf (with anything before it) and
> "file" returns that it is a PDF allow it.  At the same time if something
> other than PDF is returned by "file" the attachment is is handled like a
> virus.......
> 
> Once I am happy with the code I'll post it..... (otherwise engaged at
> the moment - my daughter was born two days ago :-) )
> 
> matt
> 
Congratulations!!! Mine are 15 and 20, so I miss having a little one
around!!

-- 

/-----------------------\           |~~\_____/~~\__  |
| MailScanner; The best |___________ \N1____====== )-+
| protection on the net!|                   ~~~|/~~  |
\-----------------------/                      ()

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!