Brad Knowles wrote:
At 8:50 AM -0800 2005-01-29, JC Dill wrote:
Didn't I say that above?
Not that I saw, no. What I read of your message indicated that
the virus had infected a normal user and pulled a message out of their
sent folder, which would not have had the Approved: header.
In my
JC Dill wrote:
>
>An attack of this type would not be just for list administrator posts.
>It would also get past whitelist filters - because the message would
>come from someone you have already received email from and are much more
>likely to be accepting email from than some random stranger a
At 10:23 AM -0800 2005-01-29, JC Dill wrote:
So I repeat my statement, don't allow attachments to your
mailing list. The downside is too great, sooner or later your list
WILL end up spreading a virus.
Absolutely. Can't argue with that.
--
Brad Knowles, <[EMAIL PROTECTED]>
"Those who would
At 8:50 AM -0800 2005-01-29, JC Dill wrote:
Didn't I say that above?
Not that I saw, no. What I read of your message indicated that
the virus had infected a normal user and pulled a message out of
their sent folder, which would not have had the Approved: header.
Even then, most moderator
Mark Sapiro wrote:
Furthermore, if such a scenario has occurred or did occur in the
future, I suspect it would be just an unlucky accident. While I'm sure
that a clever worm creator could deliberately try to exploit this
potential vulnerability, I don't think the payoff would be sufficient
to justi
JC Dill wrote:
>
>Most moderators use the web to approve email from *others*, but most of
>the ones I know who are responsible for originating content for their
>list use the approved header when they send the content to their list so
>that they don't have to take an additional step of going to
Brad Knowles wrote:
At 10:50 PM -0800 2005-01-28, JC Dill wrote:
OK, I'm just speculating here... what if there's a virus/trojan out
that
is able to take email that a user had already sent (email in the "sent"
folder), and resend it with a virus payload (in this case, the
beagle.ba
virus ab
At 10:50 PM -0800 2005-01-28, JC Dill wrote:
OK, I'm just speculating here... what if there's a virus/trojan out that
is able to take email that a user had already sent (email in the "sent"
folder), and resend it with a virus payload (in this case, the beagle.ba
virus above)? If it grabbed a
On Fri, 28 Jan 2005 22:50:11 -0800, JC Dill <[EMAIL PROTECTED]> wrote:
>
> OK, I'm just speculating here... what if there's a virus/trojan out
> that is able to take email that a user had already sent (email in the
> "sent" folder), and resend it with a virus payload (in this case, the
> beagle.b
On Fri, 28 Jan 2005 20:31:19 -0500 (EST), Dan Mahoney, System Admin
<[EMAIL PROTECTED]> wrote:
>
> I just had a small problem. A virus was just sent to all the list members
> which had spoofed the moderator's email address. No "requires approval"
> message was sent, despite the fact that everyon
Dan Mahoney, System Admin wrote:
Guys,
I just had a small problem. A virus was just sent to all the list
members which had spoofed the moderator's email address. No "requires
approval" message was sent, despite the fact that everyone (even the
moderator) has the "mod" bit set to "on".
http://
Dan Mahoney wrote:
>
>I just had a small problem. A virus was just sent to all the list members
>which had spoofed the moderator's email address. No "requires approval"
>message was sent, despite the fact that everyone (even the moderator) has
>the "mod" bit set to "on".
>
>http://securityresp
Agreed: I run Fedora Core 2 with Mailman on one of my mail servers,
using MIMEDefang with SpamAssassin and Clam Antivirus, along with having
my lists fully moderated. I've never had even one spam or virus get
through (lists have been up for several years; started with RedHat
6.2 or 7.1 and M
Maybe you should install a virus scanning feature to your mailer?
I use mimedefang which has a hook to many different virus scanning products. I
use f-prot.
My platform:
Fedora Core 2
Sendmail 8.13.1
mimedefang 2.48
f-prot linux ws 4.4.2
this configuration discards infected email messages.
Je
Guys,
I just had a small problem. A virus was just sent to all the list members
which had spoofed the moderator's email address. No "requires approval"
message was sent, despite the fact that everyone (even the moderator) has
the "mod" bit set to "on".
http://securityresponse.symantec.com/avc
15 matches
Mail list logo
