Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Re: E-Mail viruses
From: Cael Abal <lists2 () onryou com>
Date: Fri, 05 Mar 2004 16:16:47 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Methinks you misunderstand.  Only the proprietary extension, i.e. .inc
or .xyz or .whatever, would be allowed through, and since virus
writers would never use this extension, it would eliminate ALL viruses
at the gateway. The nice thing about this approach is that it
completely eliminates the need for any anti-virus on the mail server
since all virus attachments are automatically dropped without the need
for scanning.  Quite a simple, yet elegant solution, if I do say so
myself.

Curt,

Interesting idea, provided your org is not specifically targeted --
although admittedly none of the currently-touted solutions would do much
against a direct attack.

Personally I'd dispute this solution's elegance, anything which requires
substantial user behaviour change (and doesn't drastically improve the
virus/worm situation across the board) is an ugly kludge.

Cael

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)

iD8DBQFASO4+R2vQ2HfQHfsRAsGgAJ9H6YmejXCkIcV216qGWo+i+aqIDQCffHRv
Ht7Ccmlw++aAEcQu9Lw6Fzo=
=QhDq
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]