My ISP, Embarq, seems to have this policy of not scanning .zip attachments - the below is from the Embarq support person at DSL Reports:
"Regarding the second question, these emails come in as a zip attachment. I have inquired about getting these blocked but to unzip each file and scan it would put a tremendous strain on our mail servers and could be an invasion of privacy as not all .zip files would be contain a virus. I have been told this by our DSL product manager and our email vendor." That just doesn't sound right to me. My question then for the list is what's the best way to report these Worm.Mydoom.M infected mails to them? In the past I've just been forwarding the email minus the infected .zip to their abuse addresses. Is this the most correct way or should I be forwarding the entire message with the infected file attached? FWIW, the latest of these is not a .zip but in fact a windows executable. Now why they would not scan that I have not idea, I'm going to have to ask. Thanks for any advice Chris -- KeyID 0xE372A7DA98E6705C
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
