#Block attachments with executable extensions /name=[^>]*\.(exe|pif|com|dll|vbs|bat|sh|bash|so|zip|tar|gz|cpio)/ REJECT # Block message/partial vulnerability /message\/partial/ REJECT # CVE-2022-1328 mitigation - block messages with uuencode /^Content-Transfer-Encoding:.*uuencode.*/ REJECT # Remove Received string that is created when spamassassin reinjects message into postfix # This is to prevent leaking the userid of the spamassassin user /^Received:.*userid.*/ IGNORE # Remove User-Agent strings from headers /^User-Agent: .*/ IGNORE