Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: Backdoor not recognized by Kaspersky
From: "Aditya, ALD [Aditya Lalit Deshmukh]" <aditya.deshmukh () online gateway technolabs net>
Date: Wed, 3 Mar 2004 23:36:09 +0530

'Password is a long yellow fruit enjoyed by monkeys.'

which ones ? there are many types of them around here ....
Leave passworded .zips alone -- take the sensible approach and catch an 
infected file once it's been extracted.

that would be the best approach but it would make all the spam to be able to come up to the desktop.
maybe we will start getting all the spam as zipped attachments...

how about the smtp server simply rejecting mail from spoofed hosts ? as all the viruses generate spoofed hosts and it 
is very easy for any smtp server to do a dns lookup on the sending server, if the hostname / ip address do not match 
reject the message.

Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]