I have this rule in my postfix configuration to block out
scf|scr|sct|shb|shm|shs|swf|uue|vb|vbe|vbs|vbx|vxd|wab|wsc|wsf|wsh)/ REJECT Potentially dangerous file attachment. Please do not include any executable attachments in your email.
So what's interesting is that some people are complaining b/c they're sending us e-mail and the server is rejecting it:
Sep 14 14:13:00 mail postfix/cleanup: D6354198047: reject: body name=3D"place" downloadurl=3D"(Link: http://www.5iantlavalamp.com/)http://www.5iantlavalamp.com/"/>; from=<email@example.com> to=<firstname.lastname@example.org>: Potentially dangerous file attachment. Please do not include any executable attachments in your email.
It kinda stuck out at me b/c this was the 2nd time I saw that 5iantlavalamp.com domain, so it piqued my interest. A WHOIS reported it was owned by Microsoft! I go to the Web site and it redirects me to some Office site. So I'm guessing that some new version of Outlook has that stuff embedded in the e-mail message and other Outlooks know about it and will do something (spiffy
I could refine that rule a bit (not sure how at the moment), but I'll wait & see if it becomes a big problem.