[Esa-l][OT] Attachment blocking

John D. Hardin jhardin at impsec.org
Tue Jul 24 13:34:31 PDT 2001

On Tue, 24 Jul 2001, Eric Andreychek wrote:

> The danger with that is some sites really do use exe files to
> provide HTML content.  Ugh.  But for *.vbs or whatever, you can
> say something like:
>   acl POISONED urlpath_regex \.vbs$ \.com$ \.lnk$

You could then AND this rule with the ACLs for the webmail sites.

Is anybody here also  on the Squid mailing list? Do they already have
something for this, so that we're not reinventing the wheel?

 John Hardin KA7OHZ   ICQ#15735746   http://www.wolfenet.com/~jhardin/
 jhardin at impsec.org        pgpk -a finger://gonzo.wolfenet.com/jhardin
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
  In 1998 more than three times as many people in the US were killed
  by incompetent physicians than were killed by handguns, yet the
  President of the A.M.A. is adopting "gun safety" as his platform.
   1197 days until the Presidential Election

More information about the esd-l mailing list