cuckoomx.conf

<!--
	CuckooMX Configuration File
//-->
<cuckoomx>
	<!-- Core settings //-->
	<core>
		<outputdir>/data/cuckoo/quarantine</outputdir>
		<process-zip>yes</process-zip>
		<process-rar>yes</process-rar>
		<process-url>yes</process-url>
	</core>

	<!-- Settings for Cuckoo sandbox //-->
	<cuckoo>
		<basedir>/data/cuckoo</basedir>
		<db>/data/cuckoo/db/cuckoo.db</db>
		<guest>WinXP-SP3</guest>
	</cuckoo>

	<!-- Logging settings //-->
	<logging>
		<syslogfacility>mail</syslogfacility>
		<sendmailpath>/usr/sbin/sendmail</sendmailpath>
		<notify>xavier@example.com</notify>
	</logging>

	<!-- MIME-types to ignore (not send to Cuckoo for analize) //-->
	<ignore-mime>
		<mime-type>text/plain</mime-type>
		<mime-type>text/html</mime-type>
		<mime-type>image/jpeg</mime-type>
		<mime-type>image/x-citrix-jpeg</mime-type>
		<mime-type>image/png</mime-type>
		<mime-type>image/gif</mime-type>
		<mime-type>text/x-patch</mime-type>
		<mime-type>application/pkcs7-signature</mime-type>
		<mime-type>application/pgp-signature</mime-type>
		<mime-type>video/x-ms-wmv</mime-type>
		<mime-type>message/delivery-status</mime-type>
		<mime-type>text/rfc822-headers</mime-type>
	</ignore-mime>

	<!-- URLs to not process //-->
	<ignore-url>
		<url>insecure\.org</url>
		<url>secunia\.com</url>
		<url>twitter\.com</url>
		<url>(google|gmail|youtube)\.com</url>
		<url>yahoo\.com</url>
		<url>facebook\.com</url>
	</ignore-url>
</cuckoomx>