[Mimedefang] HTML Exploits
Rob MacGregor
rob.macgregor at gmail.com
Fri May 4 18:00:16 EDT 2007
On 5/4/07, Daniel Aquino <mr.danielaquino at gmail.com> wrote:
> Has "Anomy HTML Cleaner" or any other such type of system been
> recommended lately?
>
> I would really like to protect Outlook clients from exploits...
Well, you could consider action_rebuild, to ensure that the email is
correctly assembled, allowing any later scanners (on another host) a
better chance of spotting anything dubious.
And, obviously, running AV scanners.
> Perhaps a simple blocking of JS code ?
And how are you going to identify it? Once you take into account the
multiple ways of encoding it you'll discover it's not so simple after
all.
Other options include the use of remove_redundant_html_parts and
configuring Outlook to view emails as plain text only. Oh, and
keeping the hosts patched.
--
Please keep list traffic on the list.
Rob MacGregor
Whoever fights monsters should see to it that in the process he
doesn't become a monster. Friedrich Nietzsche
More information about the MIMEDefang
mailing list