Ping a Specific Port

Question

Miloš Đakonović

Asked: 2015-03-08 10:12:36 +0800 CST2015-03-08 10:12:36 +0800 CST 2015-03-08 10:12:36 +0800 CST

Block attachment files without extensions in Postfix via mime_header_checks?

772

We know how to reject executables and other potentially dangerous file extensions via mime_header_checks directive:

mime_header_checks = regexp:/etc/postfix/mime_header_checks  (main.cf)
/name=[^>]*\.(bat|com|exe|dll|vbs)/ REJECT  (mime_header_checks)

This way bat,com,exe,dll,vbs are gone. But, since there's OS's that treats extensionless files like executables, it came to my mind that these should be blocked also.

How to have that/what would be regexp to match these files along with known executables?

1 Answers

Voted

Esa Jokinen · Answer 1 · 2015-03-08T11:42:58+08:00

Best Answer

Esa Jokinen

2015-03-08T11:42:58+08:002015-03-08T11:42:58+08:00

How about adding

/name="[^>]*[^.]{7}"/ REJECT

It will match if there is dot anywhere else than for separating the (max. 4 character) extension

NAME="=?ISO-8859-1?Q?document?="
NAME="=?ISO-8859-1?Q?doc.ument?="

but won´t match

NAME="=?ISO-8859-1?Q?document.pdf?="
NAME="=?ISO-8859-1?Q?document.xlsx?="

Just add to number "{7}" if you wish to allow longer extensions.

2

Block attachment files without extensions in Postfix via mime_header_checks?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?