Re: How to virus-check cyrus-imap mailboxes

To: Terje Fåberg <terje_fb@yahoo.no>
Cc: debian-user@lists.debian.org
Subject: Re: How to virus-check cyrus-imap mailboxes
From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
Date: Tue, 8 Oct 2002 13:50:48 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.3.96.1021008134123.20911A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 20021008185947.97914.qmail@web12902.mail.yahoo.com>

hi ya

-- if you do NOT have root access to the pop mail server
   nor the smtp server ... feel free to ignore my rants
	- you're stuck with doing things after the fact

but, assuming you have control of the smtp and pop mail server
	- it can be the same or different machines 

-- you should first check for incoming spam... and reject 
   the spam and its viruses 
	- we'll leave the definition of spam for another day

-- than check that incoming emails for virus and again reject
   the incoming mail... whether legit or not

-- use sendmail, exim, and or your fav mta to do the above

-- at this point above... the virus has NOT yet been received
   in your mailboxes...

-- cleaning up the mailboxes, after you have received
   the junk mail and/or legit mail w/ virus is too late
	( aka filters )

-- senders of legit emails w/ viruses would be happy to
   be notified that their machine is sending out virus
   with their legit emails ... and will happily try to
   fix it before the virus wakes up and does something worst


antispam stuff
	http://www.Linux-Sec.net/Mail/antispam.gwif.html

antivirus stuff
	http://www.Linux-Sec.net/Mail/antivirus.gwif.html

c ya
alvin

On Tue, 8 Oct 2002, [iso-8859-1] Terje Fåberg wrote:

> 
> Hi, 
> 
> I have a nice eMail server here, which servers mail to
> about ten users using cyrus-imapd. Amavis is scanning
> all incoming and outgoing mail for over about a year
> now. 
> 
> I've been quite happy with this until yesterday, when
> one user encountered quite an old mail containing the
> famous love letter. The beast didn't really spread,
> but I'm a little bit concerned about other potentially
> dangerous viruses within my system. 
> 
> I tried different scanners on imap boxes containing
> the love letter, but no one of these was able to find
> the (base64-)encoded virus in the mail. 
> 
> And that's where I'm standing right now: I have a few
> gigabytes of emails and no clue whether there are any
> virii in them. And neither do I have a clue how to
> solve this problem.
> 
> Any ideas?
> 
> Ha det godt, 
> Terje
> 
> 
> ______________________________________________________
> Se den nye Yahoo! Mail på http://no.yahoo.com/
> Nytt design, enklere å bruke, alltid tilgang til Adressebok, Kalender og Notisbok
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>

Reply to:

Follow-Ups:
- Re: How to virus-check cyrus-imap mailboxes
  - From: Terje Fåberg <terje_fb@yahoo.no>

References:
- How to virus-check cyrus-imap mailboxes
  - From: Terje Fåberg <terje_fb@yahoo.no>

Prev by Date: dict dictionaries
Next by Date: Re: IPv6 DNS Queries
Previous by thread: Re: How to virus-check cyrus-imap mailboxes
Next by thread: Re: How to virus-check cyrus-imap mailboxes
Index(es):
- Date
- Thread