> On Jan 7, 2018, at 6:09 PM, D'Arcy Cain <da...@vex.net> wrote:
>
> Absolutely. There are only two things that an MTA should do with email,
> deliver it or bounce it. Silently dropping is plain wrong.
There's a reasonable exception for malware. Detection of malware has
a much lower FP rate than detection of spam. There's little benefit
and much risk in delegating the decision to read or not read messages
that have malicious content. The only plausible exception is ".doc"
or similar resumes with viruses removed, if one still wants to work
with candidates whose machines are infected... If the virus scan
engine has sufficiently fine-grained classification one might then
permit messages where document macros are sanitized, and the removed
macros are not of the email-worm variety. Don't know whether any
AV software makes this possible.
--
Viktor.
