#
# Settings for Anomy mail santizer installed under /opt/anomy
# Docs at http://mailtools.anomy.net/sanitizer.html
#

#
# Temporary and saved file names use this template
#
file_name_tpl = /var/quarantine/att-$F-$T-$$$

#
# Feature switches:
#
feat_verbose = 1
feat_log_inline = 0
feat_log_stderr = 1
feat_force_name = 1

#
# Number of rules below
#
file_list_rules=5

# Drop known evil stuff
file_list_1_scanner = 0
file_list_1_policy = drop
file_list_1 = (?i)((happy99|x-mas|setup|aol4free|ie0199|funlove|flcss).exe|(mine).zip)

# Quarantine any attachments that users should have no reason to mail around
file_list_2_scanner = 0
file_list_2_policy = save
file_list_2 = (?i)(winmail\.dat|\.
file_list_2 += (exe|com|cmd|bat|pif|sc[rt]|lnk|dll|ocx|vb[se]?|hta
file_list_2 += |sh[bs]|hlp|chm|eml|ws[cfh]|ad[ep]|jse?|md[abew]|ms[ip]
file_list_2 += |reg|asd|cil|pps|asx|wm[szd])(\.g?z|\.bz\d?)*)$

# De-fang html, removing javascript et. al.
file_list_3_scanner = 0
file_list_3_policy = defang
file_list_3 = (?i)\.([sp]?html)(\.g?z|\.bz\d?)*$

# Allow through attachments that cannot possibly contain viruses
file_list_4_scanner = 0
file_list_4_policy = accept
file_list_4 = (?i)\.(gif|tiff?|jpe?g|pn[mg]|x[pb]m|dvi|e?ps|p(df|cx)
file_list_4 += |mp[32]|wav|au|ram?
file_list_4 += |avi|mov|mpe?g
file_list_4 += |t(xt|ex)|csv|l(og|yx)
file_list_4 += |[ch](pp|\+\+)?|s|inc|asm|pa(tch|s)|java|php\d?
file_list_4 += |[ja]sp|tcl|tkd
file_list_4 += |can|pos|ux|kbf|xal|\d+)(\.g?z|\.bz\d?)*$

# Scan *everything* else with the f-prot virus scanner
file_list_5_scanner = 0:6:3,8:/usr/local/bin/f-prot -ai -archive -dumb %FILENAME
file_list_5_policy  = accept:save:drop:save
file_list_5 = .*