Educause Security Discussion mailing list archives

Re: Future Impact of Viruses on Internet

From: "Gordon D. Wishon" <gwishon () ND EDU>
Date: Thu, 29 Jan 2004 10:43:59 -0500

Instead of blocking these attachments, we typically rename them (to
.exe_unknown, for example) and forward them along with a note suggesting
the recipient exercise extreme caution in their handling.  This was a
policy promulgated from within the OIT, vetted across the technical
community, and then communicated and implemented.  We've had almost no
negative response, and plenty of positive reaction and support.

Gordon

At 09:34 AM 1/29/2004 -0600, Marty Hoag wrote:

Gene Spafford wrote:

Curmudgeon mode on:
...

As to the second point, if we simply start blocking any executable
content attachments, we will do a lot to stop these kinds of things
(not to mention recover disk space and bandwidth, cut down on
trojans, and reduce the number of pranks users play play on each
other).  I block  .(com|cmd|exe|pif|scr|bat) files on general
principle.  I also bounce .doc files, and I am now bouncing .zip
archives.   This has never caused me any real difficulty in
collaboration with others.     If anything, it has cut down on the
junk people simply mail because it is easy.   Sending around 50K
files for a 3 line memo is a waste of resources.


Gene and others:

   I am interested in how your campus went about this. Was the
blocking instituted unilaterally by some central IT organization?
Or was there some local process you went through to explain why
the blocking was needed and to gain consensus on what should be
blocked? Is there a University policy specifically supporting
this or just one which gives your group responsibility for
protecting the local network? Or is this being done on a
smaller subset of the University network?
   I certainly agree the blocking is a good thing but am
wondering about the way folks go about this (as an example).

   Thanks!

   Marty

**********
Participation and subscription information for this EDUCAUSE Discussion
Group discussion list can be found at http://www.educause.edu/cg/.


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

Current thread:

Future Impact of Viruses on Internet Tim Lane (Jan 28)
- <Possible follow-ups>
- Re: Future Impact of Viruses on Internet Daniel Medina (Jan 28)
- Re: Future Impact of Viruses on Internet Herrera Reyna Omar (Jan 28)
- Re: Future Impact of Viruses on Internet Gene Spafford (Jan 28)
- Re: Future Impact of Viruses on Internet Gary Flynn (Jan 28)
- Re: Future Impact of Viruses on Internet Gary Dobbins (Jan 29)
- Re: Future Impact of Viruses on Internet Marty Hoag (Jan 29)
- Re: Future Impact of Viruses on Internet Gordon D. Wishon (Jan 29)
- Re: Future Impact of Viruses on Internet Cal Frye (Jan 29)
- Re: Future Impact of Viruses on Internet Gary Dobbins (Jan 29)
- Re: Future Impact of Viruses on Internet Cal Frye (Jan 29)
- Re: Future Impact of Viruses on Internet Gene Spafford (Jan 29)
- Re: Future Impact of Viruses on Internet Jim Moore (Feb 03)
- Re: Future Impact of Viruses on Internet Scott Weeks (Feb 03)
- Re: Future Impact of Viruses on Internet Jim Moore (Feb 03)
- Re: Future Impact of Viruses on Internet Scott Weeks (Feb 03)