But this brings up a disturbing question: What would prevent a virus from perpetrating the same workaround? I mean, if Bagle.J can instruct an individual to supply the necessary ZIP password, then it can also instruct the individual to rename a ".TXT," ".PDF" or randomly-generated file extension to ".ZIP?"
It follows that banning solely by file extension would become moot, given that no particular extension could be trusted.
A virus certainly can do that. However, for each step that they add ("The password is the number 12345 plus 2", "Rename it to .ZIP", etc.), the fewer people will actually open it.
But if that does happen, we will add automatic detection of .ZIP files to Declude Virus, so that they can be banned regardless of extension. The base code is in place so we can come out with an interim release to do so very quickly if needed.
-Scott
---
Declude JunkMail: The advanced anti-spam solution for IMail mailservers since 2000.
Declude Virus: Catches known viruses and is the leader in mailserver vulnerability detection.
Find out what you've been missing: Ask for a free 30-day evaluation.
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
