Full Disclosure mailing list archives
AW: AV "feature" does more DDoS than Sobig
From: vogt () hansenet com
Date: Fri, 29 Aug 2003 11:47:57 +0200
form of SPAM perhaps, another viri form perhaps also, at least a by product of the original virus/trojan. Perhaps the best way to deal with these, since most everyone contacted, the originator and the AV vendor, are bit-bucketing all the e-mail responses to them, is to just promail filter then to /dev/null. else, you become part of the perpetual 'SPAM/viri-by-product" problem, wasting and consuming bandwidth
Actually, I don't think that is a good solution. It protects your inbox, but not your pipe, and it wakes nobody up to the problem. I'm currently REJECTing all incoming "virus from you" mails. Maybe the admins will act when they get the damage straight back into their own mailboxes. Then again, maybe THEY just file it all to /dev/null. Wouldn't be surprised at the really responsible behaviour of setting up a robot and then dropping the bounces it creates. Tom Vogt _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- AW: AV "feature" does more DDoS than Sobig vogt (Aug 29)