I received an e-mail with an attachment NAMED: "www.boards4all.com". Of course, '.com' files are similar to '.exe' files and so what *looks* like a web address actually ends up being an executable.
Similarly, I've seen things like www.paypal.com.scr.
We use MIMEDefang here, and one of the things it does by default is check for unsafe filenames. You can then take whatever action you want, whether it's to strip the attachment, reject the message, run a more thorough virus scanner, or "defang" it (in this case, change the filename and MIME type to prevent anything from auto-executing). The problem, of course, comes when send files like "www.whatever.com Home Page.doc" or "cnn.com article.htm" and so on.
Kelson Vibber
SpeedGate Communications <www.speed.net>
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
