Blocking .exe attachments with postfix or amavisd-new and ISPConfig 3

Wednesday, September 2, 2009 posted by admin

If you use postfix and / or amavisd-new on the mail server, you can use the following recipes to block emails with executable (exe, bat, scr) attachments.

Block the attachments with a postfix header filter

In ISPConfig, click on “Email in the upper menu, then on “Content filter” in the left menu and click on the “Add new content filter” button. Enter the following details:

Filter:

MIME-Header Filter

Regexp. Pattern:

/^Content-(Disposition|Type).*name\s*=\s*”?(.*\.(bat|exe|scr))(\?=)?”?\s*(;|$)/x

Data:

File extension is blacklisted on this server

Action:

DISCARD

Use amavisd-new to block the emails with executable attachments.

Edit the amavisd configuration file (/etc/amavisd.conf or /etc/amavisd/amavisd.conf)

vi /etc/amavisd/amavisd.conf

and add the following lines:

$banned_filename_re = new_RE(
qr’.\.(bat|exe|scr)$’i,
qr’^\.(exe|zip|lha|tnef)$’i,
);
then restart amavisd-new:

/etc/init.d/amavis restart

Tags: ISPConfig 3

This entry was posted on Wednesday, September 2nd, 2009 at 11:38 am and is filed under Debian, Email, ISPConfig 3, Ubuntu. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Blocking .exe attachments with postfix or amavisd-new and ISPConfig 3”

Bjoern says:
January 11, 2010 at 9:12 am
.com files should be blocked too.
Reply
fbifido says:
April 27, 2011 at 7:57 pm
How do you block and send an email only to the recipient? and forward the block email to a specific address like remove@mydomain.com.
Reply

FAQforge

Categories

Meta