The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

block W32.Beagle.J@mm with mailscanner

Discussion in 'cPanel Developers' started by smarcellini, Mar 9, 2004.

  1. smarcellini

    smarcellini Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    156
    I've tried editting etc/MailScanner/filename.rules.conf and adding:

    deny message.zip$

    But when I test this, it still allows the "message.zip" file to pass through.

    I notice below that it is set to:

    allow \.zip$

    so I changed this to:

    # allow \.zip$

    but it still isnt blocking the attachment.

    I did restart the MailScanner service too.

    I would like to block all the (name).zip files that are infected with this virus and any help would be appreciated.
     
    #1 smarcellini, Mar 9, 2004
    Last edited: Mar 9, 2004
  2. mmkassem

    mmkassem Well-Known Member

    Joined:
    Oct 21, 2002
    Messages:
    390
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Egypt
    Change the allow to deny

    example:
    deny \.zip$ - -

    For a specific zip file:

    deny hello\.zip$
     
    #2 mmkassem, Mar 9, 2004
    Last edited: Mar 9, 2004
  3. smarcellini

    smarcellini Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    156
    thanks after playing with it, that did the trick. Here is a sample of what I have to help others.

    # These are known to be mostly harmless.
    allow \.jpg$ - -
    allow \.gif$ - -
    # .url is arguably dangerous, but I can't just ban it...
    allow \.url$ - -
    allow \.vcf$ - -
    allow \.txt$ - -
    deny Message\.zip$ - -
    deny Attach\.zip$ - -
    deny Information\.zip$ - -
    deny Readme\.zip$ - -
    deny Document\.zip$ - -
    deny Info\.zip$ - -
    deny TextDocument\.zip$ - -
    deny TextFile\.zip$ - -
    deny MoreInfo\.zip$ - -
    allow \.t?gz$ - -

    NOTE*: The attachment name is case sensitive so make sure they are capitalized.
     
    #3 smarcellini, Mar 10, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - block Beagle J@mm
  1. cyphixia

    Disable automatic scanning and blocking of file manager

    cyphixia, Jun 18, 2017 at 5:27 PM, in forum: Security
    Replies:
    1
    Views:
    50
    cPanelMichael
    Jun 19, 2017 at 10:34 AM
  2. crazyaboutlinux

    Allow country for specific website from blocked country

    crazyaboutlinux, Jun 9, 2017, in forum: Security
    Replies:
    1
    Views:
    56
    cPanelMichael
    Jun 13, 2017
  3. Yossi

    Blocking Emails except to own domain/gmail

    Yossi, Jun 7, 2017, in forum: E-mail Discussions
    Replies:
    1
    Views:
    65
    cPanelMichael
    Jun 7, 2017
  4. warrenceoo

    cPHulk blocking issue

    warrenceoo, May 31, 2017, in forum: E-mail Discussions
    Replies:
    1
    Views:
    58
    cPanelMichael
    May 31, 2017
  5. mosalah

    Blocked using Barracuda Reputation message

    mosalah, May 24, 2017, in forum: E-mail Discussions
    Replies:
    1
    Views:
    86
    Infopro
    May 24, 2017

Share This Page