Filetypes inside archive files.

Drew Marshall drew at
Fri Mar 3 23:04:36 GMT 2006

On 3 Mar 2006, at 22:29, Sergey Dorokhov wrote:

> Hello all.
> Mailscanner is doing pretty good job by filtering dangerous  
> attachments (EXE,
> COM and etc.). But in the same time I want to allow these types of  
> files to be
> sent inside archives (ZIP, ARJ and etc.). It seems that I can’t  
> find any info
> in old postings or docs.
> I can allow to send any filetypes without ZIPping it but I want to  
> allow EXE
> files ONLY inside archive but still deny them if they are attached  
> as is.
> I would appreciate if someone will share their knowledge.
> Thanks in advance,
> Sergey

Have a look at the section:

# The maximum depth to which zip archives will be unpacked, to allow for
# checking filenames and filetypes within zip archives.
# Note: This setting does *not* affect virus scanning in archives at  
# To disable this feature set this to 0.
# A common useful setting is this option = 0, and Allow Password- 
# Archives = no. That block password-protected archives but does not do
# any filename/filetype checks on the files within the archive.
# This can also be the filename of a ruleset.
Maximum Archive Depth = 0

in MailScanner.conf

Set it to 0 (As above) and it will do exactly what you want.

In line with our policy, this message has 
been scanned for viruses and dangerous 
content by MailScanner, and is believed to be clean.

More information about the MailScanner mailing list