--On 25 February 2010 22:15:49 -0500 Jerry <ges...@yahoo.com> wrote:
Abide by what edict? Email marked as containing a virus is simply
rejected. If a spammer or bot wishes to send out viruses from my
network, they'll have to bypass my MTA to do it, which is more
difficult since very few machines on my network have permission to
send out via port 25.
You should be using SMTP Authentication, irregardless of what port is
being accessed which would stop virtually all unauthorized
transmissions. If you don't know how to do that, ask or Google it. I am
really interested in how a Spammer is getting access to your network to
begin with. It sounds like your network is anything but secure.
We do insist on authenticated SMTP. All our users use it, otherwise they
would not be able to email their colleagues/tutors/students - because we
won't accept email submitted through third parties.
However, we still get accounts compromised through phishing attacks. The
phishers use the accounts to send more spam, including phish bait, and
particularly target other educational institutions, and sometimes target
people here too.
As a result, we find it essential to scan outbound and local email, just as
we do inbound email.
--
Ian Eiloart
IT Services, University of Sussex
01273-873148 x3148
For new support requests, see http://www.sussex.ac.uk/its/help/
_______________________________________________
Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net
http://www.clamav.net/support/ml
