[Rspamd-Users] Regarding Malicious File blocking using hashes in rspamd
Riccardo Alfieri
riccardo.alfieri at spamteq.com
Tue Jul 14 11:29:26 UTC 2020
On 14/07/20 12:52, Venkata Ganesh Raju Malyala wrote:
> Hello everyone,
>
> Can someone advise blocking malicious files/ attachments in rspamd if we
> have a set of malicious file hashes.
>
Hi,
you can take inspiration from the function called "check_file_callback"
here:
https://github.com/spamhaus/rspamd-dqs/blob/master/2.x/rspamd.local.lua#L97
Depending on the type of the hash you have you'll probably need to
adjust the "local filehash" line #103
--
Best regards,
Riccardo Alfieri
Spamhaus Technology
https://www.spamhaustech.com/
More information about the Users
mailing list