[Mimedefang] HTML Mail / Active content filter
Florian Lohoff
f at zz.de
Mon Apr 10 05:32:46 EDT 2023
Hi,
i'd like to drop/replace HTML attachments/mails which contain active
components like javascript/javascript external refs.
<script language="javascript></script>
or
<html><head>
<script type="text/javascript" src="http://a.b.c.d"></script>
</head></html>
Basically going through all text/html etc parts. I am unshure whether
i'd need to really decode HTML with HTML::Parse or the like to find it
or if simple "regex" matching would be sufficient. Currently i am
dropping this by spamassassin with custom filters using regex.
Has anyone an example for this or experience which HTML perl module
is the most stable?
And while at it. I tried my luck to do this also with PDF with active
content, trying to parse PDF with CAM::PDF (or PDF::API2) to drop
PDFs with active content. So if anyone has suggestions here would
also be nice.
Flo
--
Florian Lohoff f at zz.de
Any sufficiently advanced technology is indistinguishable from magic.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.mimedefang.org/pipermail/mimedefang_lists.mimedefang.org/attachments/20230410/0ba2136e/attachment.sig>
More information about the MIMEDefang
mailing list