Start here:
http://www.exchangefaq.org/faq/Exchange-5.5/Martin-
Blackstone's-List-of-Danger/sectionID/1017
Beware of wrappred URL.
Expand as needed. I also quarantine zip files, and am
agitating to quarantine PDFs, but that probably won't happen
until someone gets pwned by a malicious file.
However, consider this:
http:
//www.asspsmtp.org/wiki/Common_attachments
I don't agree with it, as some of the file types in the
second URL have been known to carry malware - the compressed
file, MS Office and graphic format types especially.
Kurt
> -----Original Message-----
> From: maia-users-bounces renaissoft.com
> [mailto:maia-users-bouncesrenaissoft.com]On Behalf Of
Koenraad Lelong
> Sent: Friday, September 28, 2007 04:08
> To: maia-usersrenaissoft.com
> Subject: [Maia-users] Question about policy for
attachments
>
>
> Hello,
> I'm looking for opinions about which attachments to
ban.
> My amavisd.conf is set to the "long list" to
quarantaine
> mail. Since our
> customers sometimes do send us executable files, the
people
> who need to
> receive those sometimes complain that my policy is too
> strict. Zipping
> those files, even with a password, does not help. I
could
> allow zipped
> executables, but I've seen mails with zipped virusses,
and I
> don't know
> for certain if I can trust my users to be carefull with
executables
> (those zipped virusses came from "microsoft"
with "important security
> updates").
> Are there any resources on the web addressing this ?
> My apologies if this is off-topic.
> We're a small company, and I'm managing the mailserver
> strictly for our
> own needs.
> Thanks,
> Koenraad Lelong.
> _______________________________________________
> Maia-users mailing list
> Maia-usersrenaissoft.com
> http://www.renaissoft.com/mailman/listinfo/maia-users
>
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
|
