From: Conor Daly (conor.daly at domain met.ie)
Date: Thu 02 Aug 2001 - 11:55:03 IST
On Thu, Aug 02, 2001 at 11:28:53AM +0100 or thereabouts, Donncha O Caoimh wrote:
> Best way of avoiding SirCam or any other email trojan (well, the user
> has to click the attachment in most cases, ie. trojan horse) is use
> "Procmail Email Sanitizer" at the following address:
>
> ftp://ftp.rubyriver.com/pub/jhardin/antispam/procmail-security.html
>
> It catches double-barrel extensions on attachments so it doesn't need to
> be updated when the next VB script comes along. It catches legit traffic
> too, but the slight hassle involved there is nothing compared with the
> peace of mind this script provides!
I know, I told work about it, even tested a quick and dirty implementation
on a local box but they didn't bother. Instead, they're planning to
implement an NT box between the current (FreeBSD and sendmail) mail server
and the internet to do virus scanning type stuff. So, currently when the M$
Exchange mail server goes down (lately due to lack of space since people
insist on broadcasting M$ Word docs to everyone in the house), the *nix
boxes are unaffected for mail but after this new system is installed, when
the NT virus scanner crashes, not only will the M$ users be dead in the
water (which *does* keep them protected from worms etc) but the *nix users
(who are unaffected by most of these worms anyhow) will also lose their
email.
Sheesh!
Conor
-- Conor Daly Met Eireann, Glasnevin Hill, Dublin 9, Ireland Ph +353 1 8064276 Fax +353 1 8064275 ------------------------------------ 10:49am up 69 days, 21:52, 8 users, load average: 2.34, 2.89, 2.53
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:11:26 GMT