[Mimedefang] survey: dropping password protected file
James Miller
jimm at simutronics.com
Wed Mar 3 15:25:34 EST 2004
> Subject: Re: [Mimedefang] survey: dropping password protected file
>
>
> "Michael Sims" <michaels at crye-leike.com> writes:
>
> > We are seriously considering doing the same thing. It seems to
> me that the
> > virus writers are starting a shift from com|exe|bat|scr|pif to
> mainly zip
> > because they know the former is more likely to be filtered out.
> I'm getting
> > really tired of fighting the zip virus of the day and am almost
> willing to
> > surrender ZIP land to the viruses for good...
>
> The problem is - we've been refusing com/exe/pif since 2002, but told
> our users to switch to zip archives instead...
>
We use clamd, within Mimedefang, for file/attachment scanning. As many of
you know, Clamd passes encrypted .zip files along as 'ok.' Sorry if I've
missed the discussion, but what would the process be to drop encrypted zip
files within Mimedefang?
Thanks,
Jim
More information about the MIMEDefang
mailing list