[Mimedefang] Re: Unsafe file types
Lucas Albers
admin at cs.montana.edu
Sat Dec 6 15:04:21 EST 2003
This is the methodology I am interested in.
For example on .doc extensions blocking them if they are not the following
mime types:
plain-text
msword
This would block a number of msword related exploits.
Word blindly opens any doc file, and if it is another content type it will
attempt to convert it or some how handle it, with unforseeen results.
> Maybe also check for mismatches between file content and extension or
> between mime-type and extension, triggering only on mismatches that could
> be exploits. I think I've spotted some such tricks before, but cant't
> remember now. Should research this a bit before deciding it's a good idea
> I guess.
>
> Regards
> /Jonas (who might weel do something like that in the near future.)
More information about the MIMEDefang
mailing list