Solved

Amavis-new is blocking Office 2007 file formats.

Posted on 2009-07-13
3
2,861 Views
Last Modified: 2013-12-09
We have a dedicated SPAM filter running Linux Debian (Etch) implementing Postfix/Amavis/SA/Clamd. Amavis-new is blocking new MS Office 2007 with messages similar to the following:

X-Amavis-Alert: BANNED, message contains part: multipart/mixed | application/octet-stream,.zip

My company has asked me to allow docx / xlsx / pptx fomats as attachments. How should I do this without opening a huge security hole?
0
Comment
Question by:icsbudapest
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 4

Accepted Solution

by:
OliverRahner earned 500 total points
ID: 24838659
Find the line starting with "$banned_filename_re" inside your amavisd config file(s).

Add the following directly under this line:

  [ qr'(\.xlsx|\.docx|\.pptx)$' => 0 ], # allow MS Office 2007 plain files

This should be rather safe, as Office 2007 only allows macros to be placed inside files with an extension which ends in 'm' (.xlsm, .docm etc).
0
 

Author Comment

by:icsbudapest
ID: 24838712
Ah, for some reason I missed that about the macro format. Thanks for the quick tip. I will send some test messages and see if it is working.

0
 

Author Comment

by:icsbudapest
ID: 24838786
All seems to be working. attachments are going through without a problem. Thanks again.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Granting full access permission allows users to access mailboxes present in their database. By giving full access permission one can open and read the content of any mailbox but cannot send emails from that mailbox.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question