[Esd-l] ZIP scanning

John D. Hardin jhardin at impsec.org
Mon Feb 23 06:01:19 PST 2004


On Sun, 22 Feb 2004, Jonathan Hutchins wrote:

> If the policy is to reject a certain type of raw attachment, it
> should be rejected when zipped as well, so that you can't just
> bypass policy using a ZIP file.

...I take it you are voting for paranoid default $ZIPPED_EXECUTABLES
then?

--
 John Hardin KA7OHZ    ICQ#15735746    http://www.impsec.org/~jhardin/
 jhardin at impsec.org                        pgpk -a jhardin at impsec.org
 key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
  "Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
  does quite what I want. I wish Christopher Robin was here."
				-- Peter da Silva in a.s.r
-----------------------------------------------------------------------
   41 days until the Slovakian Presidential Election


More information about the esd-l mailing list