Getting MailScanner to stop scanning .zip files.

[TogaDave]

If someone on my server receives an email with a *legitimate* .exe file zipped up (for example, if someone on my server recieves a .zip file of a program that they just purchased), MailScanner is blocking the file.

Another example is when someone tries to send me a .ico file that they have designed for me. The server blocks the .ico file, even if they .zip it first and just send me filename.zip.

This creates all kinds of problems with customers not receiving legitimate zip files that they have requested.

I want MS to continue blocking dangerous files like .exe and .ico, but I do not want it to scan incoming zip files for them.

I have commented out this line in filetype.rules.conf:
#deny self-extract No self-extracting archives No self-extracting archives allowed

And I have zip allowed in filename.rules.conf
allow \.zip$ - -

Is there a way to get MS to stop scanning zip files for anything other than viruses?
Thanks,
Dave

[RickG]

Dave:

In /usr/mailscanner/etc/MailScanner.conf, look for the configuration option:

Maximum Archive Depth and make sure it is set as below (the default is 2):

Maximum Archive Depth = 0

The scenario you describe is a common one. By setting the Archive Depth to 0, the attachment is still scanned for virii, but MailScanner does not perform the filename/filetype checks on the files within the archive (i.e. zip file).

Make sure you reload MailScanner (service MailScanner reload) after editing this file.

Hope this helps -

Rick

[TogaDave]

Awesome, thank you! Going to try this out now.

[TogaDave]

Worked like a charm, THANKS AGAIN!

[dsampaio]

Worked very well here!

Thanks!