Don't understand this match

Rick Cooper rcooper at dwford.com
Thu Mar 2 14:43:23 GMT 2006



> -----Original Message-----
> From: mailscanner-bounces at lists.mailscanner.info
> [mailto:mailscanner-bounces at lists.mailscanner.info]On Behalf Of Dave
> Strydom
> Sent: Thursday, March 02, 2006 8:42 AM
> To: MailScanner discussion
> Subject: Re: Don't understand this match
>
>
> I gave up on this rule in my mailscanner, because i have clients
> sending emails that contain like whatever.xls.zip which are legit
> files, since we do about 80 000 emails a day across 3 scanning
> servers, it's annoying to backtrack and release legit files that get
> caught  by this rule, so i eventually removed the rule and just put
> some trust in the virus scanning.
>
> Infact i edited a whole bunch of stuff in the filename.rules.conf and
> filetype.rules.conf because some of the defaults are just not suitable
> in the shared hosting enviroment.
>

I too had a bunch of venders that sent various files with double+ dots so
added an accept rule ahead of the deny rules like:

accept	\.(xls|pdf|doc|zip)$

So those would get through so long as they *ended* with an acceptable
extention.

Rick


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.




More information about the MailScanner mailing list