Bugtraq: Unfortunate interaction between EZMLM and MessageLabs virus scanning

[Ben Laurie <ben () algroup co uk>]

The widely used mailing list manager, EZMLM
(http://cr.yp.to/ezmlm.html), when sending mails for moderation, sets a
reply-to address which, if responded to, will cause the mail to be
accepted for distribution.

MessageLabs (http://www.messagelabs.com/) offer an email virus scanning
service which, unfortunately, sends virus alerts to, amongst others, the
reply-to address.

This causes email bearing viruses to be automatically accepted even when
sent to a moderated list.

MessageLabs have, in a telephone conversation earlier today,
acknowledged this problem and anticipate a fix in the near future. In
the meantime, we advise all moderators of ezmlm mailing lists to not use
MessageLabs vetted email addresses for moderation, or to temporarily
disable the list pending a fix.

Stop Press
----------

I have heard that some people within MessageLabs think that they should
argue about the RFCs rather than fix this problem, so MessageLabs
customers might care to inform them directly of their own opinions.

Cheers,

Ben.

--
http://www.apache-ssl.org/ben.html       http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff