Firewall Wizards mailing list archives
Re: Stripping MIME attachments at FW-1
From: Darren Reed <darrenr () reed wattle id au>
Date: Sat, 20 May 2000 17:13:39 +1000 (EST)
Whilst this has nothing at all to do with FW-1, it does have some relevance for MIME "stripping". I posted a full copy of smap.c to fwtk-users, for those who don't read that (and still use smap :) I've put patches at: http://coombs.anu.edu.au/~avalon/smap.diff.txt Darren
Subject: Extensions to smap for MIME filtering. To: fwtk-users () tis com Date: Sat, 20 May 2000 16:13:42 +1000 (EST) Hi, I've just spent a few hours hacking on smap to do MIME filtering. I will `erase' certain MIME content (replace it all with X's) or change MIME types from one to another. There are also a bunch of extensions to do header stripping and provide protection from bounce attacks. This is based on the original 2.1 - I've not really followed what others have done to avoid relaying. The extensions are all accessible through the config file as follows: smap: localnet 192.168 10 smap: erase-mime */badmime smap: convert-mime */badbad text/plain smap: localdomains local.com domain.com both erase-mime and convert-mime allow for wildcards in the MIME type (only * and ?) and are case insensitive. Hosts connecting from networks which match "localnet" have "Received:" headers stripped. parameters for "convert-mime" *MUST* be given in pairs! BTW, I apologise in advance if this duplicates the work of others, I've been paying very little attention to this list, except with the 'd' key. Darren
Current thread:
- Stripping MIME attachments at FW-1 Geoffrey Scrace (May 17)
- <Possible follow-ups>
- RE: Stripping MIME attachments at FW-1 Gautier . Rich (May 19)
- Re: Stripping MIME attachments at FW-1 Darren Reed (May 21)