anomy-list

Re: sample configuration files

From: Bjarni Runar Einarsson (04254@xyz.molar.is)
Date: Þri 03 Okt 2000 - 15:44:54 UTC


On 2000-10-02, 20:01:35 (-0500), mark david mcCreary wrote:
> I would be interested in seeing some other configuration files that people
> are using.

The following is a configuration file I'm using at one of the sites
I administer. It is pretty representative of how I configure the
sanitizer, and how I recommend people use it:

  - block stuff you know is dangerous and know you don't need
  - allow stuff you know is safe and want
  - scan stuff you need, but don't trust
  - mangle anything else

Feel free to ask questions. :)

##############################################################################

# Active features.
#
feat_boundaries = 0
feat_files = 1
feat_forwards = 1
feat_html = 1
feat_lengths = 1
feat_log_inline = 1
feat_log_stderr = 0
feat_scripts = 1
feat_trust_pgp = 0
feat_uuencoded = 1
feat_verbose = 1
file_name_tpl = /var/quarantine/att-$F-$T.$$
file_list_rules = 4

# Files we absolutely don't want.
#
file_list_1_scanner = 0
file_list_1_policy = save
file_list_1 = (?i)\.(exe|vb[es]|c(om|hm)|bat|sys)(\.g?z|\.bz\d?)*$

# Pure data, don't mangle this stuff (much).
#
file_list_2_scanner = 0
file_list_2_policy = accept
file_list_2 = (?i)\.(gif|jpe?g|pn[mg]|x[pb]m|dvi|e?ps|p(df|cx)|bmp
file_list_2 += |mp[32]|wav|au|ram?
file_list_2 += |avi|mov|mpe?g
file_list_2 += |t(xt|ex)|csv|l(og|yx)|sql|jtmpl
file_list_2 += |[ch](pp|\+\+)?|s|inc|asm|pa(tch|s)|java|php\d?
file_list_2 += |[ja]sp
file_list_2 += |can|pos|fdps|ux|reg|kbf|xal|\d+)(\.g?z|\.bz\d?)*$

file_list_3_scanner = 0
file_list_3_policy = accept
file_list_3 = ^[^\.]+$

# Archives and scriptable stuff - virus scan these.
#
file_list_4_scanner = 0:5:3,4:/usr/local/bin/avp.sh %FILENAME
file_list_4_policy = accept:save:save:save
file_list_4 = \.(xls|d(at|oc)|p(pt|l)|rtf|[sp]?html?|class|upd|wp\d?|m?db
file_list_4 += |z(ip|oo)|ar[cj]|lha|[tr]ar|rpm|deb|slp|tgz
file_list_4 += )(\.g?z|\.bz\d?)*$

# Default policy: accept, but mangle file name.
#
file_default_policy = defang

# Messages
#
msg_file_save = ****\n
msg_file_save += NOTE: An attachment was deleted from this part of the message,\n
msg_file_save += because it failed one or more checks by the virus scanning system.\n
msg_file_save += The file has been quarantined on the mail server, with the following\n
msg_file_save += file name:\n
msg_file_save += \n
msg_file_save += \t%SAVEDNAME\n
msg_file_save += \n
msg_file_save += The removed attachment's original name was:\n
msg_file_save += \n
msg_file_save += \t%FILENAME\n
msg_file_save += \n
msg_file_save += It is recommended that you contact your system administrator if you\n
msg_file_save += need access to the file. Please note that this may not mean the file\n
msg_file_save += was infected, it may just have had a black-listed file name.\n
msg_file_save += ****\n

-- 
Bjarni R. Einarsson                           PGP: 02764305, B7A3AB89
 04254@xyz.molar.is              -><-             http://bre.klaki.net/

Netverjar gegn ruslpósti: http://www.netverjar.is/baratta/ruslpostur/

-- This mailing list's home page is: http://mailtools.anomy.net/archives/anomy-list/ There you can find subscription instructions and possibly an archive. Molar.is is a free Icelandic mailing list service.



hosted by molar.is