Full Disclosure mailing list archives

Re: Why are postmasters distributing the MyDoom virus?

From: gadgeteer () elegantinnovations org
Date: Sat, 7 Feb 2004 14:34:11 -0700

On Sat, Feb 07, 2004 at 02:15:43PM -0500, Richard M. Smith (rms () computerbytesman com) wrote:

Perhaps these postmasters need to review
their bounce message policies and remove all attached files from messages
being bounced.


Since it is well known that virii forge From headers the better policy 
adjustment would be to NOT bounce virii messages at all.  The Anti-Virus 
companies are certainly well aware of it as it is a characteristic 
described in their alerts.

Many of these bounces triggered by virii are nothing less then a spam 
opprotunity for the A-V software company.  There is no "opt-out" 
from these spam messages.  This would seem to be a clear violation of 
CAN-SPAM.

Some sites have implemented various schemes to reject virii at the smtp 
level.  See nanog mail archives for recent threads dealing with this and 
related topics.
-- 
Chief Gadgeteer
Elegant Innovations

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Why are postmasters distributing the MyDoom virus? Richard M. Smith (Feb 07)
- RE: Why are postmasters distributing the MyDoom virus? Edward W. Ray (Feb 07)
- Re: Why are postmasters distributing the MyDoom virus? gadgeteer (Feb 07)
  - RE: Re: Why are postmasters distributing the MyDoom virus? Bill Royds (Feb 07)
- Re: Why are postmasters distributing the MyDoom virus? Paul Schmehl (Feb 07)