ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.
One of a set of tools we're offering as a way to say thank you for being a part of the community.
Solved
Why the attachment being blocked?
Posted on 2011-03-03
This is using MailScanner on CentOs. There is an external party tried to send us, and in return, mail being bounced back with the error messages as follows:
This is a message from the MailScanner E-Mail Virus Protection Service
--------------------------
The original e-mail attachment "%112233aaccbb.htm"
is on the list of unacceptable attachments for this site and has been
replaced by this warning message.
If you wish to receive a copy of the original attachment, please
e-mail helpdesk and include the whole of this message
in your request. Alternatively, you can call them, with
the contents of this message to hand when you call.
At Thu Mar 3 22:56:39 2011 the virus scanner said:
MailScanner: Filename trying to hide its real type (%aabbcc1122.htm)
Note to Help Desk: Look on the abc networks (smtp.abc.com) MailScanner in /var/spool/MailScanner/qua
--
Postmaster
abc networks
What's wrong with the attachment? How to solve the problem?
This is a message from the MailScanner E-Mail Virus Protection Service
--------------------------
The original e-mail attachment "%112233aaccbb.htm"
is on the list of unacceptable attachments for this site and has been
replaced by this warning message.
If you wish to receive a copy of the original attachment, please
e-mail helpdesk and include the whole of this message
in your request. Alternatively, you can call them, with
the contents of this message to hand when you call.
At Thu Mar 3 22:56:39 2011 the virus scanner said:
MailScanner: Filename trying to hide its real type (%aabbcc1122.htm)
Note to Help Desk: Look on the abc networks (smtp.abc.com) MailScanner in /var/spool/MailScanner/qua
--
Postmaster
abc networks
What's wrong with the attachment? How to solve the problem?
-
4
-
2
7 Comments
can you please paste output of
/etc/MailScanner/filename.
/etc/MailScanner/filename.
/etc/MailScanner/filename.
/etc/MailScanner/filename.
Hi santoshmotwani,
Filename.allow.all.conf:
# This ruleset will allow all attached files to pass
allow .* - -
For filename.rules.conf, see the attached
filename.rules.conf.txt
Filename.allow.all.conf:
# This ruleset will allow all attached files to pass
allow .* - -
For filename.rules.conf, see the attached
filename.rules.conf.txt
At a quick glance it seems that it is hitting the CLSID rule:
# Deny filenames containing CLSID's
deny \{[a-hA-H0-9-]{25,}\} Filename trying to hide its real type. Files containing CLSID's are trying to hide their real type
Examples:
A977FF0C-8757-4E76-8533-48
000209FF-0000-0000-C000-00
Can the file be renamed and sent?
# Deny filenames containing CLSID's
deny \{[a-hA-H0-9-]{25,}\} Filename trying to hide its real type. Files containing CLSID's are trying to hide their real type
Examples:
A977FF0C-8757-4E76-8533-48
000209FF-0000-0000-C000-00
Can the file be renamed and sent?
Featured Post
Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Virtualization software lets you run different versions of Windows, Ubuntu Linux and other versions of Linux all at the same time, rather than running each one directly from your computer's hard drive.
Learn how to navigate the file tree with the shell.
Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Get a first impression of how PRTG looks and learn how it works. This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
- Linux
- Windows OS
- Networking
- Paessler
- Network Management
- Network Analysis, Network Operations
Suggested Courses
Course of the Month3 days, 23 hours left to enroll
589 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.