AW: AV "feature" does more DDoS than Sobig

[vogt () hansenet com]

> form of SPAM perhaps, another viri form perhaps also, at least a by
> product of the original virus/trojan.  Perhaps the best way 
> to deal with
> these, since most everyone contacted, the originator and the 
> AV vendor,
> are bit-bucketing all the e-mail responses to them, is to just promail
> filter then to /dev/null.  else, you become part of the perpetual
> 'SPAM/viri-by-product" problem, wasting and consuming bandwidth

Actually, I don't think that is a good solution. It protects your
inbox, but not your pipe, and it wakes nobody up to the problem.

I'm currently REJECTing all incoming "virus from you" mails. Maybe
the admins will act when they get the damage straight back into
their own mailboxes.

Then again, maybe THEY just file it all to /dev/null. Wouldn't be
surprised at the really responsible behaviour of setting up a
robot and then dropping the bounces it creates.


Tom Vogt

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html