On Mon, 16 Nov 2009, LuKreme wrote:
On 16-Nov-2009, at 08:29, Ned Slider wrote:
rich...@buzzhost.co.uk wrote:
Ralph, I entirely agree as a logical human, but end users are *not*
logical users. Many probably think 'Hey, this file must be OK to run as
it's passed our gateway virus scanner and Norton is not picking it up -
let's see what it does.....'
Rhetorical question: Why would "our gateway" be passing executable
attachments to clueless end users in the first place?
The payload is a .zip file, containing a .exe, so it takes a certain
level of stupidity/ignorance in 2009 to be caught out.
I thought there was a way to check for .zips containing .exe files, but
it does require doing a body check as I recall, so not very cheap.
<plug type="shameless">
http://www.impsec.org/email-tools/procmail-security.html
</plug>
There are other policy-enforcement tools, of course; I don't think SA can
to that yet, though.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
The one political issue that strips all politicians bare is
individual gun rights.
-----------------------------------------------------------------------
38 days since President Obama won the Nobel "Not George W. Bush" prize
