[[i] 本帖最后由 gdmzyzx 于 2006-7-17 16:56 编辑 [/i]]作者: scyzxp 时间: 2006-6-4 21:38
重新定义一下mailscanner的规则就可以了作者: gdmzyzx 时间: 2006-6-12 17:07
谢谢
# Find zip archives by filename or by file contents?
# Finding them by content is a far more reliable way of finding them, but
# it does mean that you cannot tell your users to avoid zip file checking
# by renaming the file from ".zip" to "_zip" and tricks like that.
# Only set this to no (i.e. check by filename only) if you don't want to
# reliably check the contents of zip files. Note this does not affect
# virus checking, but it will affect all the other checks done on the contents
# of the zip file.
# This can also be the filename of a ruleset.
Find Archives By Content = no
MailScanner过滤附件有两个文件:
1.filename.rules.conf(allow/deny文件后缀)
2.filetype.rules.conf(allow/deny文件类型)
就一切OK了!作者: gdmzyzx 时间: 2006-7-17 16:54
在filename.rules.conf中的设置:
# Deny filenames ending with CLSID's
deny \{[a-hA-H0-9-]{25,}\} Filename trying to hide its real type Files containing CLSID's are trying to hide their real type
# Deny filenames with lots of contiguous white space in them.
deny \s{10,} Filename contains lots of white space A long gap in a name is often used to hide part of it
# Deny all other double file extensions. This catches any hidden filenames.
allow \.[a-z][a-z0-9]{2,3}\s*\.[a-z0-9]{3}$ Found possible filename hiding Attempt to hide real filename extension
请教一下这些是什么意思,如何设置?作者: kang 时间: 2008-4-17 16:28
只需在Mailscanner.conf 中,修改配置:
Maximum Archive Depth = 0
該設置設為“0”後,將不會對壓縮包中的文件進行filename.rules.conf和filetype.rules.conf規則的過濾。
如果也想允許加密的壓縮包也可以不作以上過濾,修改配置:
Allow Password-Protected Archives = yes
即可。作者: shidianxin 时间: 2008-5-8 10:12
# virus checking, but it will affect all the other checks done on the contents