On Fri, 19 Mar 2004, Antony Stone wrote: > On Friday 19 March 2004 9:21 pm, Robert Schmidt wrote: > > > We bounce messages that have viruses. > > That sounds like a terrible idea.
Depends on what he meant by "bounce". These days, I find it useful to distinguish between "reject" and "send notification". > The number of viruses which do not have forged sender addresses these days is > so small that you can ignore them. > > If you bounce the rest, you are sending unwanted and irrelevant emails to > innocent users who didn't send anything to you, and who will regard your > bounce messages basically as spam. I'll readily agree that creating new notification messages is just stupid. Rejecting the message (with a 550 status, for example) is the best thing to do. This leaves it up to the machine sending the virus to generate a bounce. Given that the sender is almost always the infected machine, no bounce will be generated. This has the (minor) downside that messages that came through a relay first will generate a bounce (from the relay) to an innocent third party. On the other hand, it has the (major) upside that it is robust against false positives, while minimizing the number of bounce messages being passed around. Damian Menscher -- -=#| Physics Grad Student & SysAdmin @ U Illinois Urbana-Champaign |#=- -=#| 488 LLP, 1110 W. Green St, Urbana, IL 61801 Ofc:(217)333-0038 |#=- -=#| <[EMAIL PROTECTED]> www.uiuc.edu/~menscher/ Fax:(217)333-9819 |#=- -=#| The above opinions are not necessarily those of my employers: |#=- -=#| UIUC CITES Security Group || Beckman Imaging Technology Group |#=- ------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
