[Mimedefang] blocking

Joseph Brennan brennan at columbia.edu
Fri Feb 26 11:41:30 EST 2010

> Yes I would like to block ".exe" containing an URL for downloading an
> .exe. That's what I want.
> For example
> http://wwww.xxxx./download.exe

Since Spamassassin already parses uris, you might create a local.cf
Spamassassin rule and score high enough to reject.

uri LOCAL_EXE	  /https?:\/\/.*\/.*\.exe$/
score LOCAL_EXE   10.0

I think that's right. Make sure dot "exe" comes after at least one /
and at the end of the uri.

Joseph Brennan
Columbia University Information Technology

More information about the MIMEDefang mailing list