Firewall Wizards mailing list archives
Re: Email encryption and virus scanning
From: t <miedaner () twcny rr com>
Date: Mon, 20 May 2002 18:58:58 -0400
Hmmmm... lots of interesting talk here. Notes or Groupwise certainly reduce the likelyhood of "automatic" execution and exploitable vulnerabilites. I would say that for encrypted email (sporadic type) your client software is your defense whether it is trojan detection or whatever. For encryption of all enterprise email having a "master" key so that all email can be scanned at the email server/gateway is required. I am surpirised that nobody on "this list" mentioned that IDS systems for monitoring, tracking and affecting the Bad traffic is useful. Short of the above certainly for some backdoors a local firewall will help - not for all though. Might seem pretty hopeless, maybe it is. Certainly is one of the easiest ways into the average corporate network. Cheers. Mikael Olsson wrote:
Ryan Russell wrote:On Fri, 17 May 2002, Prabhakar Mallya wrote:Any suggestions on best practices that one can follow on one's desktop to avoid harm from viruses carried by encrypted mail in one's inbox?How would an email with a virus get encrypted? [good explanation on why we won't see encrypted viruses]Maybe the question is better formulated as "how do you stop a targeted trojan attack from arriving via encrypted e-mail"? This is where it gets very interesting, IMHO. The only thing I can think of is sandboxing your mail reader with something like Finjan's stuff, which I haven't tested at all. Anyone with personal experience of these kind of local-machine sandboxes that feel like sharing? -- Mikael Olsson, Clavister AB Storgatan 12, Box 393, SE-891 28 ÖRNSKÖLDSVIK, Sweden Phone: +46 (0)660 29 92 00 Mobile: +46 (0)70 26 222 05 Fax: +46 (0)660 122 50 WWW: http://www.clavister.com "Senex semper diu dormit" _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Email encryption and virus scanning Dave Piscitello (May 21)
- Re: Email encryption and virus scanning Frederick M Avolio (May 21)
- Re: Email encryption and virus scanning Dave Piscitello (May 21)
- Re: Email encryption and virus scanning Don Kendrick (May 22)
- Re: Email encryption and virus scanning Dave Piscitello (May 21)
- Re: Email encryption and virus scanning Frederick M Avolio (May 22)
- Re: Email encryption and virus scanning Dave Piscitello (May 22)
- Re: Email encryption and virus scanning Frederick M Avolio (May 22)
- Re: Email encryption and virus scanning Frank Knobbe (May 31)
- Re: Email encryption and virus scanning Dave Piscitello (May 22)
- Re: Email encryption and virus scanning Frederick M Avolio (May 21)
- Re: Email encryption and virus scanning Crispin Cowan (May 22)
- <Possible follow-ups>
- Re: Email encryption and virus scanning t (May 21)
- Re: Email encryption and virus scanning Frederick M Avolio (May 21)
- Re: Email encryption and virus scanning Antonomasia (May 21)
- Re: Email encryption and virus scanning Dave Piscitello (May 22)
- RE: Email encryption and virus scanning Gautier . Rich (May 21)
- Re: Email encryption and virus scanning Adam Shostack (May 22)
- RE: Email encryption and virus scanning Hill, Keith (May 22)
- Re: Email encryption and virus scanning ark (May 23)