Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 13 Jun 2003 04:31:19 +0200
From:      Brad Knowles <brad.knowles@skynet.be>
To:        Bill Moran <wmoran@potentialtech.com>
Cc:        chat@FreeBSD.org
Subject:   Re: Antivirus for (mailservers on) FreeBSD
Message-ID:  <a0600120bbb0ee73f012c@[10.0.1.2]>
In-Reply-To: <3EE933E1.9080503@potentialtech.com>
References:  <5.2.1.1.2.20030612202321.02e28008@194.184.65.4> <20030612193524.GA31199@grumpy.dyndns.org> <3EE8DB83.4040609@potentialtech.com> <200306122006.55906.dkelly@HiWAAY.net> <3EE933E1.9080503@potentialtech.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
At 10:16 PM -0400 2003/06/12, Bill Moran wrote:

>  Additionally, you want to scan ALL emails for malware, so if something
>  sneaks in off a floppy or something it doesn't run rampant throughout
>  the company email system,

	True.

>                            while scanning outgoing emails for spam is
>  simply a waste of CPU cycles.

	False.  You can be held liable (including criminal liability) if 
you could have reasonably prevented something like this, and chose 
not to.  Moreover, the damage to your reputation for being known as 
someone infecting other people with viruses/worms/Trojan 
Horses/etc... could be incalculable.

	What is different about outgoing vs. incoming e-mail, with 
respect to viruses, is that you always want to inform the internal 
person that a message with a suspected virus was found, and you may 
(or may not) want to inform the outside people.  In one case, the 
insiders are the recipients, in the other case, they are the 
sender(s).

	Also, if you catch all outbound e-mail, then you stop virus 
floods before they start (assuming they're recognized).

-- 
Brad Knowles, <brad.knowles@skynet.be>

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
     -Benjamin Franklin, Historical Review of Pennsylvania.

GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+
!w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++)
tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a0600120bbb0ee73f012c>