dnsadmin dnsadmin at 1BIGTHINK.COM
Wed Jan 11 20:23:00 GMT 2006

At 04:13 AM 1/11/2006, you wrote:

>I concur.
>Please remind me when something is due for removal.
>On 11 Jan 2006, at 08:03, Nerijus Baliunas wrote:
> > Hello,
> >
> > Now .wmf files are allowed, but .ico, .cur, .hlp are not. IMHO it
> > should be
> > the other way around. So I suggest the following:
> > When new vulnerability is discovered, extensions should be added (.wmf
> > in this case) to filename.rules.conf. After some time (half a year?)
> > extensions, which are not so popular like .pif, .scr, .com, .bat
> > should be
> > removed (comented out) - i.e. .ico and .hlp should be allowed now.
> > Because filename.rules.conf is most useful when new vulnerability
> > is discovered and not all antiviruses detect them (or not everyone is
> > upgraded), but it is quite safe to suggest that in a half year time
> > either antivirus software is updated or Windows systems are patched
> > (or both).

I still see lots of .pif attempts. Allow at your own demise! I've yet 
to see a valid .scr, .hlp, .ico, or .cur and I've definitely run into 
some mentally debilitated users!


------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki ( and
the archives (

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list