kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/mail/anomy-sanitizer/files/sanitizer.cfg.sample
Sergei Kolobov 04de5e37c4 Add anomy-sanitizer 1.63, sanitize and clean incoming/outgoing mail. 
The Anomy sanitizer is what most people would call
"an email virus scanner". The most important jobs that the sanitizer
can do for you - it can scan email attachments for viruses.

Other things it can do:
- Disable potentially dangerous HTML code, such as javascript,
  within incoming email.
- Protect you from email-based break-in attempts which exploit
  bugs in common email programs (Outlook, Eudora, Pine, ...).
- Block or "mangle" attachments based on their file names.
  This way if you don't need to recieve e.g. visual basic scripts,
  then you don't have to worry about the security risk they imply
  (the ILOVEYOU virus was a visual basic program).
  This lets you protect yourself and your users from whole
  classes of attacks, instead of blocking individual exploits.

Author:	Bjarni R. Einarsson <bre@netverjar.is>
WWW:	http://mailtools.anomy.net/

PR:		59869
Submitted by:	janos.mohacsi@bsd.hu
2003-12-11 17:25:34 +00:00

57 lines
1.6 KiB
Text
Raw Blame History

# Active features.
#
feat_boundaries = 0
feat_files = 1
feat_forwards = 1
feat_html = 1
feat_lengths = 1
feat_log_inline = 1
feat_log_stderr = 0
feat_scripts = 1
feat_trust_pgp = 0
feat_uuencoded = 1
feat_verbose = 1
file_list_rules = 4
#
# Note: This directory must exist and be writable by
# the user running the sanitizer.
#
file_name_tpl = /var/quarantine/att-$F-$T.$$
# Files we absolutely don't want (mostly executables).
#
file_list_1_scanner = 0
file_list_1_policy = save
file_list_1 = (?i)(winmail\.dat
file_list_1 += |\.(exe|vb[es]|c(om|hm)|bat|pif|s(ys|cr))
file_list_1 += (\.g?z|\.bz\d?)*)$
# Pure data, don't mangle this stuff (much).
#
file_list_2_scanner = 0
file_list_2_policy = accept
file_list_2 = (?i)\.(gif|jpe?g|pn[mg]|x[pb]m|dvi|e?ps|p(df|cx)|bmp
file_list_2 += |mp[32]|wav|au|ram?
file_list_2 += |avi|mov|mpe?g
file_list_2 += |t(xt|ex)|csv|l(og|yx)|sql|jtmpl
file_list_2 += |[ch](pp|\+\+)?|s|inc|asm|pa(tch|s)|java|php\d?
file_list_2 += |[ja]sp
file_list_2 += |can|pos|ux|reg|kbf|xal|\d+)(\.g?z|\.bz\d?)*$
file_list_3_scanner = 0
file_list_3_policy = accept
file_list_3 = ^[^\.]+$
# Scan WinWord and Excel attachments with built-in macro scanner.
# We consider anything exceeding the score of 25 to be dangerous,
# and save it in the quarantine.
#
file_list_4 = (?i)\.(doc|dot|xls|xlw)$
file_list_4_policy = accept:accept:save:save
file_list_4_scanner = 0:1:2:builtin/macro 25
# Default policy: accept, but mangle file name.
#
file_default_policy = defang
Reference in a new issue View git blame Copy permalink