On 19 Jul 00, at 11:30, Dang, Travis wrote: > There was news http://www.msnbc.com/news/432208.asp last night regarding PCs > may be attacked by opening e-mail attachment in Outlook. Is there a port or > something that we can block on the firewall to preventing this from > happening. The work around is to upgrade to IE5 with patch, but it may take > too long to do so. Thank you, Why certainly: You can block port 110 :-) Oh, let's see, that sounds a bit like the famous Marcus Ranum tool. Seriously: the hole is apparently in parsing MIME headers and occurs during the POP3 or IMAP *download* of mail from the server. Based on what I know, there is nothing you can do at the firewall that won't completely shut off mail service to your users. The only thing you can do at the server side is to convert from IMAP or POP3 to MAPI for your client-server communications. (I've never done this, it may be more complicated than upgrading desktops.) I suppose it is possible for a CVP scanner or SMTP filter to "sanitize" the E-mail to choke off the exploit. I don't know if any of the folks that sell this kind of product have that sort of solution out yet or not. It should be doable, but this kind of solution leaves me with a queasy feeling, somehow. Did you say you could hear me panting just a little? I'm a tad out of breath. Running around upgrading every desktop with the patch. Boy I sure am having a fun day ... --- #include <disclaimer.h> Jim Rosenberg Ross Mould 259 S. College St. Washington, PA 15301 (724) 222-7006 x 189 E-mail: [EMAIL PROTECTED] ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
