anomy-list

Re: 2 Issues

From: Ronnie Gilkey (141340@xyz.molar.is)
Date: Mon 08 Aug 2005 - 15:50:17 GMT

  • Next message: William: "Re: 2 Issues"

    I definitely know the answer to #2, need a little more info about the
    scenario with #1. Are there multiple html parts to the message?

    On Mon, 2005-08-08 at 10:29, William wrote:

    > I have integrated Anomy into a working 4-server mail handling solution
    > using CentOS 4, postfix, courier-imap, MySQL, SquirrelMail, MailScanner,
    > SpamAssassin, Razor, Pyzor, DCC, ClamAV, BitDefender, and popAuth3. I'm
    > very happy with the solution, except for two issues that I see with Anomy:
    >
    > 1) Whenever HTML has been sanitized, Anomy prints it's modification
    > report a full twice, exactly duplicated, into the message stream. For
    > very large HTML messages that use extensive Style Sheets, this adds
    > considerably to the size of the message and is not desirable. How can I
    > limit Anomy to print it's modification report just once per message?
    >

    This is an odd error, what version are you using. I have used version
    1.7.1 for quite some time and have never seen that error. Would you be
    willing to send a sample inline log with private information stripped?

    > 2) In Anomy's modification report, it prints it's version as: Anomy
    > 0.0.0 : Sanitizer.pm $Id: Sanitizer.pm,v 1.90 2005/01/04 20:30:13 bre Exp $
    > I suspect the version of 0.0.0 is not intentional. How do I update
    > Anomy's version string appropriately?

    In line 4 of Sanitizer.pm change the $version variable.

    >
    > If needed, my configuration file is as follows:
    >
    > #
    > # Active features.
    > #
    > feat_testing = 0
    > feat_verbose = 0
    > feat_paranoid = 0
    > feat_boundaries = 0
    > feat_files = 1
    > feat_force_name = 0
    > feat_forwards = 1
    > feat_html = 1
    > feat_webbugs = 0
    > feat_lengths = 1
    > feat_log_inline = 1
    > feat_log_stderr = 0
    > feat_log_xml = 0
    > feat_log_trace = 0
    > feat_log_after = 0
    > feat_scripts = 1
    > feat_trust_pgp = 0
    > feat_uuencoded = 1
    > feat_fixmime = 1
    > feat_verbose = 1
    > file_list_rules = 4
    >
    > #
    > # Custom headers (helps confirm operation).
    > #
    > header_info = X-TSI-Virus-Scanned: ClamAV, BitDefender
    > header_info += \nX-TSI-Spam-Checked: SpamAssassin, Razor,
    > DCC, Pyzor
    > header_info += \nX-TSI-Sanitized: MailScanner, Anomy
    > header_url = 0
    > header_rev = 0
    >
    > #
    > # Customize messages.
    > #
    > msg_defanged = DISABLED
    > #
    > msg_log_prefix = *** ALERT: This message has been changed
    > before being delivered to you! The following log describes what was
    > altered and why. ***
    > #
    > msg_file_drop = *************\n
    > msg_file_drop += * %FILENAME was deleted from this message.\n
    > msg_file_drop += * If you need to receive it, ask the author\n
    > msg_file_drop += * to rename and ZIP the file before sending\n
    > msg_file_drop += * it to you.\n
    > msg_file_drop += *************\n
    >
    > #
    > # Note: This directory must exist and be writable by
    > # the user running the sanitizer.
    > #
    > file_name_tpl = /var/quarantine/att-$F-$T.$$
    >
    > #
    > # Files we absolutely don't want (mostly executables).
    > #
    > file_list_1_scanner = 0
    > file_list_1_policy = drop
    > file_list_1 = (?i)(winmail\.dat
    > file_list_1 +=
    > |\.(ad[ep]|asd|ba[st]|c(hm|md|om|pl|rt)|dll|eml|exe
    > file_list_1 += |h(lp|ta)|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|ocx
    > file_list_1 +=
    > |pcd|pif|reg|sc[rt]|sh[bs]|sys|url|vb[esx]?|ws[cfh])
    > file_list_1 += (\.g?z|\.bz\d?)*)$
    >
    > #
    > # Pure data, don't mangle this stuff (much).
    > #
    > file_list_2_scanner = 0
    > file_list_2_policy = accept
    > file_list_2 =
    > (?i)\.(gif|jpe?g|pn[mg]|x[pb]m|dvi|e?ps|p(df|cx)|bmp
    > file_list_2 += |mp[32]|wav|au|ram?
    > file_list_2 += |avi|mov|mpe?g
    > file_list_2 += |t(xt|ex)|csv|l(og|yx)|sql|jtmpl
    > file_list_2 += |[ch](pp|\+\+)?|s|inc|asm|pa(tch|s)|java|php\d?
    > file_list_2 += |[ja]sp|xls|d(at|oc)|p(pt|l)|rtf|[sp]?html?
    > file_list_2 += |class|upd|wp\d?|m?db
    > file_list_2 += |z(ip|oo)|ar[cj]|lha|[tr]ar|rpm|deb|slp|tgz
    > file_list_2 += |can|pos|ux|reg|kbf|xal|\d+)
    > file_list_2 += (\.g?z|\.bz\d?)*$
    >
    > #
    > # Pure message text, don't mangle this stuff (much).
    > #
    > file_list_3_scanner = 0
    > file_list_3_policy = accept
    > file_list_3 = ^[^\.]+$
    >
    > #
    > # Default policy: accept, but mangle file name.
    > #
    > file_default_policy = defang
    >
    >
    > Thank you for Anomy! :)
    >
    >

    Ronnie Gilkey
    Espion Intl
    Interceptor Fleet Manager
    Smart. Secure. Simple.
    225.293.5252 - voice
    225.293.8125 - fax
    141340@xyz.molar.is
    espionintl.com

    Attachments:
     + http://mailtools.anomy.net/archives/anomy-list//2005-08/f77fb95e/01.unnamed.html



    hosted by molar.is