inline
> -----Original Message-----
> From: Hedges, Nigel [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, February 13, 2001 19:22
> To: Noonan, Wesley; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
> Subject: RE: FW: Anna Kournikova virus information - Please Read
>
>
>
> That's quite true Wes. I have always taken it that Security is about
> lowering risks to the most minimal, whilst having as little impact as
> possible on communications and business. Total security would
> require most
> servers (for example) to be so watertight that nothing could
> get in - even
> legitimate business!
>
Agreed. It is all about balance. Either extreme is equally bad IMHO.
> Anti-Virus products as well as AV email agents do have means
> to block VBS
> (but not by default). In the case of CA's AV Exchange Agent
> it requires an
> enhancement which disallows all VBS, and only allows
> registered acceptable
> VBS. For external threat (ie. Mass volume VBS virus like Anna
> K.vbs) this
> would be OK, virus writers can't account for your own
> in-house VBS if you
> have them - unless the threat from inside is quite possible.
> So the chance
> of malicious code coming through in disquise of your not-well-known
> legitimate VBS is low.
True. I am also a fan of filtering at the IMC only, there-by allowing mail
that is 100% internal to have a different security level.
>
> As far as .COMs and .EXEs... I'm not so sure. I wasn't very
> keen on Office
> 2000's Service Pack 2... has anyone else installed it? It was way too
> restrictive in how many attachments it stripped. And the
> security patches
> can't be reversed unless you uninstall and reinstall Outlook
> (well that's
> what MS officially say. I copied some DLLs from a non SP2
> install, and it
> worked again).
>
I like it, though I frequently will turn of the security so I don't need to
save every stinking .exe or .vbs I get (for those who haven't put 2+2
together, I do quite a bit of scripting and am frequently collaborating with
people on code). As for turning it on, the paper clip (that shoudl rile some
folks up :-)) says to select the tools menu, options then click the security
tab then the attachment security button to adjust the setting. It's an all
or nothing change (either protect against them all, or don't protect at
all). It has worked for me on W2K (all versions) without problem. There may
have been a "Windows Update" that provided the functionality I have... I
don't remember off the top of my head whether it was in SP2, or some update
after SP2. I do know it works well though.
HTH
Wes
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
