Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

block W32.Beagle.J@mm with mailscanner

Discussion in 'cPanel Developers' started by smarcellini, Mar 9, 2004.

  1. smarcellini

    smarcellini Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    156
    I've tried editting etc/MailScanner/filename.rules.conf and adding:

    deny message.zip$

    But when I test this, it still allows the "message.zip" file to pass through.

    I notice below that it is set to:

    allow \.zip$

    so I changed this to:

    # allow \.zip$

    but it still isnt blocking the attachment.

    I did restart the MailScanner service too.

    I would like to block all the (name).zip files that are infected with this virus and any help would be appreciated.
     
    #1 smarcellini, Mar 9, 2004
    Last edited: Mar 9, 2004
  2. mmkassem

    mmkassem Well-Known Member

    Joined:
    Oct 21, 2002
    Messages:
    390
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Egypt
    Change the allow to deny

    example:
    deny \.zip$ - -

    For a specific zip file:

    deny hello\.zip$
     
    #2 mmkassem, Mar 9, 2004
    Last edited: Mar 9, 2004
  3. smarcellini

    smarcellini Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    156
    thanks after playing with it, that did the trick. Here is a sample of what I have to help others.

    # These are known to be mostly harmless.
    allow \.jpg$ - -
    allow \.gif$ - -
    # .url is arguably dangerous, but I can't just ban it...
    allow \.url$ - -
    allow \.vcf$ - -
    allow \.txt$ - -
    deny Message\.zip$ - -
    deny Attach\.zip$ - -
    deny Information\.zip$ - -
    deny Readme\.zip$ - -
    deny Document\.zip$ - -
    deny Info\.zip$ - -
    deny TextDocument\.zip$ - -
    deny TextFile\.zip$ - -
    deny MoreInfo\.zip$ - -
    allow \.t?gz$ - -

    NOTE*: The attachment name is case sensitive so make sure they are capitalized.
     
    #3 smarcellini, Mar 10, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - block Beagle J@mm
  1. Amgeek

    lfd keeps blocking one particular user

    Amgeek, Apr 26, 2018 at 9:31 AM, in forum: Security
    Replies:
    5
    Views:
    27
    Infopro
    Apr 26, 2018 at 4:02 PM
  2. Fida Zami

    Exceeded allotted quota of disk blocks error

    Fida Zami, Apr 25, 2018 at 3:11 AM, in forum: E-mail Discussions
    Replies:
    2
    Views:
    42
    cPanelLauren
    Apr 25, 2018 at 8:51 AM
  3. Cybersalt

    Trying to find Cause of CBL blocking

    Cybersalt, Apr 20, 2018, in forum: E-mail Discussions
    Replies:
    7
    Views:
    147
    planetc
    Apr 24, 2018 at 1:13 PM
  4. grumpyted

    Blocked IP traffic to UK

    grumpyted, Apr 18, 2018, in forum: Security
    Replies:
    3
    Views:
    62
    cPanelLauren
    Apr 18, 2018
  5. John Manning

    Configure SpamAssassin to block outgoing form mail

    John Manning, Apr 13, 2018, in forum: E-mail Discussions
    Replies:
    11
    Views:
    121
    cPanelLauren
    Apr 13, 2018

Share This Page