Blocking custom file extension is not working

Andrew Colin Kissa andrew at topdog.za.net
Fri Feb 5 14:19:39 UTC 2016


On 05 Feb 2016, at 4:12 PM, Pieter Goris <Pieter.Goris at cisanet.be> wrote:

> But the file is shown in outlook as a .dll
> So is there a way to block this?

Not with the way mailscanner currently checks the filenames, but i do not
see the point in reimplementing the mailscanner functionality to be able to
catch that as the mime checks would catch the real potentially dangerous
attachments anyway.

Like Jerry said, saying you are a pornstar does not make you one, file
extensions do not always indicate what a file is, the mime check is more
accurate.

I would only worry if they were able to send through a real actual .dll file.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20160205/d4aec7ab/attachment.sig>


More information about the MailScanner mailing list