dnsadmin at 1BIGTHINK.COM
Wed Jan 11 20:23:00 GMT 2006
At 04:13 AM 1/11/2006, you wrote:
>-----BEGIN PGP SIGNED MESSAGE-----
>Please remind me when something is due for removal.
>On 11 Jan 2006, at 08:03, Nerijus Baliunas wrote:
> > Hello,
> > Now .wmf files are allowed, but .ico, .cur, .hlp are not. IMHO it
> > should be
> > the other way around. So I suggest the following:
> > When new vulnerability is discovered, extensions should be added (.wmf
> > in this case) to filename.rules.conf. After some time (half a year?)
> > extensions, which are not so popular like .pif, .scr, .com, .bat
> > should be
> > removed (comented out) - i.e. .ico and .hlp should be allowed now.
> > Because filename.rules.conf is most useful when new vulnerability
> > is discovered and not all antiviruses detect them (or not everyone is
> > upgraded), but it is quite safe to suggest that in a half year time
> > either antivirus software is updated or Windows systems are patched
> > (or both).
I still see lots of .pif attempts. Allow at your own demise! I've yet
to see a valid .scr, .hlp, .ico, or .cur and I've definitely run into
some mentally debilitated users!
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner