Removing/Logging dangerous or potentially offensive content

Allow Partial Messages

Do you want to allow partial messages, which only contain a fraction of the attachments, not the whole thing? There is absolutely no way to scan these "partial messages" properly for viruses, as MailScanner never sees all of the attachment at the same time. Enabling this option can allow viruses through. You have been warned. This can also be the filename of a ruleset so you can, for example, allow them in outgoing mail but not in incoming mail.


Allow External Message Bodies

Do you want to allow messages whose body is stored somewhere else on the internet, which is downloaded separately by the user's email package?
There is no way to guarantee that the file fetched by the user's email package is free from viruses, as MailScanner never sees it. This feature is dangerous as it can allow viruses to be fetched from other Internet sites by a user's email package. The user would just think it was a normal email attachment and would have been scanned by MailScanner.
It is only currently supported by Netscape 6 anyway, and the only people who it are the IETF. So I would strongly advise leaving this switched off.
This can also be the filename of a ruleset.

Allow IFrame Tags

Do you want to allow <IFrame> tags in email messages? This is not a good idea as it allows various Microsoft Outlook security vulnerabilities to remain unprotected, but if you have a load of mailing lists sending them, then you will want to allow them to keep your users happy.
This can also be the filename of a ruleset, so you can allow them from known mailing lists but ban them from everywhere else.

Log IFrame Tags

Banning <IFrame> tags completely is likely to break some common HTML mailing lists, such as Dilbert and other important things like that. So before you implement any restriction on them, you can log the sender of any message containing an <IFrame>, so that you can set the option above to be a ruleset allowing IFrame tags from named "From" addresses and banning all others.
This can also be the filename of a ruleset.

Allow Form Tags

Do you want to allow <Form> tags in email messages? This is a bad idea as these are used as scams to pursuade people to part with credit card information and other personal data.
This can also be the filename of a ruleset.

Allow Object Codebase Tags

Do you want to allow <Object Codebase=...> tags in email messages?
This is bad idea as it leaves you unprotected against various Microsoft-specific security vulnerabilities. But if your users demand it, you can do it. This can also be the filename of a ruleset, so you can allow them just for specific users or domains.

Convert Dangerous HTML To Text

Do you want to convert HTML messages containing <IFrame> or <Object Codebase=...> tags into plain text?
This will only apply if you are also allowing the tags to be present using the configuration options above. You can allow messages that contain the tags, but convert them to plain text. This makes the HTML harmless, while still allowing your users to see the text content of the messages.

Convert HTML To Text

Do you want to convert all HTML messages into plain text?
This is very useful for users who are children or are easily offended by nasty things like pornographic spam.
This can also be the filename of a ruleset, so you can switch this feature on and off for particular users or domains.