From owner-freebsd-security  Wed Dec  5  8:53:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from osi-east2.nersc.gov (osi-east2.nersc.gov [128.55.6.20])
	by hub.freebsd.org (Postfix) with ESMTP id 9803337B405
	for <freebsd-security@FreeBSD.ORG>; Wed,  5 Dec 2001 08:53:40 -0800 (PST)
Received: from gemini.nersc.gov (gemini.nersc.gov [128.55.16.111])
	by osi-east2.nersc.gov (8.9.2/8.9.2) with ESMTP id IAA28049;
	Wed, 5 Dec 2001 08:53:39 -0800 (PST)
Received: from gemini.nersc.gov (localhost [127.0.0.1])
	by gemini.nersc.gov (Postfix) with ESMTP
	id 462183B1A2; Wed,  5 Dec 2001 08:53:39 -0800 (PST)
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: Brett Glass <brett@lariat.org>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: Mail list is posting gone virus!!!! 
In-Reply-To: Message from Brett Glass <brett@lariat.org> 
   of "Wed, 05 Dec 2001 00:07:50 MST." <4.3.2.7.2.20011205000635.048414a0@localhost> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 05 Dec 2001 08:53:39 -0800
From: Eli Dart <dart@nersc.gov>
Message-Id: <20011205165339.462183B1A2@gemini.nersc.gov>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


In reply to Brett Glass <brett@lariat.org> :

> At 06:34 PM 12/4/2001, Len Conrad wrote:
> 
> >the freebsd hubs run postfix, afaik, which can block on single and double fi
 le extensions, like .scr, .doc.scr.
> 
> This helps, but it's far from the only heuristic to use.
> 
> Of course, since we're talking about mailing lists here, FreeBSD
> should probably just strip all attachments and defang or block
> active content.

Brett makes a very good point.  This is a _security_ mailing list, 
for discussion of security issues.  IMHO, there is no need for 
anything but plaintext traffic on this list.  If people are going to
send patches, they can include them as part of the text of the 
message.  This means that PGP signatures get lost, but exceptions can 
be made if that's deemed important.

My $0.02....

		--eli
> 
> --Brett
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message