RE: Question on attachment filtering
Britney virus? John Matteson; Exchange Manager Geac Corporate Infrastructure Systems and Standards (404) 239 - 2981 My toys! My toys! I can't do this job without my toys! *** WARNING: Unencrypted electronic mail is not secure and may not be authentic. If you have any doubts as to the contents of this e-mail, please telephone the Geac representative who appears to be the sender to confirm the validity of this communication . NOTE: This electronic transmission is intended only for those to whom it is addressed. It may contain information that is confidential and/or privileged by law. Any claim to privilege is not waived or lost by reason of mistaken transmission of this information. If you are not the intended recipient, or the employee or agent responsible for delivery to the intended recipient, you must not review, distribute, copy or make any use of this transmission. In such case, please notify the sender by return e-mail and destroy all copies of same. *** -Original Message- From: Salvador Manzo [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 7:50 PM To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering NIMDA One of the vectors was a web page redirect. Not filtering any at this point... :( As for .CHM The BRITNEY virus is using this as a vector right now... -Original Message- From: Bob Peitzke [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 16:45 To: MS-Exchange Admin Issues Subject: Question on attachment filtering We are using Antigen 6.2 on our Exchange 5.5 server, with a set of filters for risky file types. We've been getting complaints from users about our filtering of *.htm attachments, and I'd like to get some advice on the value of this filter, or risk of disabling it. It seems a lot of our users' business partners send them html attachments. Trying to get them to change their ways would be about as frustrating as trying to get the Bush administration to prioritize the environment over energy revenue. Couldn't a scumbag e-terrorist embed a virus in an html file, and send it as an attachment that would get executed upon opening it, thus spreading the virus? And while we're on this subject, if we do continue filtering *.htm, shouldn't we also filter *.html and maybe *.chm? What are you guys doing in your shops? Cheers, - Bob Bob Peitzke Information Systems Manager Sander A. Kessler Associates 2850 Ocean Park Blvd., Suite 200 Santa Monica, CA, 90405-6200 office: 310.309.2280 cell: 310.613.2742 [EMAIL PROTECTED] List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
RE: Question on attachment filtering
http:[EMAIL PROTECTED] Also Known As: VBS/BritneyPic@MM, VBS_BRITNEYPIC.A, VBS/Britney-A -Original Message- From: John Matteson [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 07:01 To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering Britney virus? John Matteson; Exchange Manager Geac Corporate Infrastructure Systems and Standards (404) 239 - 2981 My toys! My toys! I can't do this job without my toys! -Original Message- From: Salvador Manzo [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 7:50 PM To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering NIMDA One of the vectors was a web page redirect. Not filtering any at this point... :( As for .CHM The BRITNEY virus is using this as a vector right now... -Original Message- From: Bob Peitzke [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 16:45 To: MS-Exchange Admin Issues Subject: Question on attachment filtering We are using Antigen 6.2 on our Exchange 5.5 server, with a set of filters for risky file types. We've been getting complaints from users about our filtering of *.htm attachments, and I'd like to get some advice on the value of this filter, or risk of disabling it. It seems a lot of our users' business partners send them html attachments. Trying to get them to change their ways would be about as frustrating as trying to get the Bush administration to prioritize the environment over energy revenue. Couldn't a scumbag e-terrorist embed a virus in an html file, and send it as an attachment that would get executed upon opening it, thus spreading the virus? And while we're on this subject, if we do continue filtering *.htm, shouldn't we also filter *.html and maybe *.chm? What are you guys doing in your shops? Cheers, - Bob Bob Peitzke Information Systems Manager Sander A. Kessler Associates 2850 Ocean Park Blvd., Suite 200 Santa Monica, CA, 90405-6200 office: 310.309.2280 cell: 310.613.2742 [EMAIL PROTECTED] List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
RE: Question on attachment filtering
CHM is a must have. HTM and HTML is a hard one. There have been times I have blocked them, but only temp until we can get a virus def. I think that is going to be a hard one to pull off. -Original Message- From: John Matteson [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 12:07 PM To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering Oh. It's a real virus. For some reason I though it was just as big a joke as the singer. John Matteson; Exchange Manager Geac Corporate Infrastructure Systems and Standards (404) 239 - 2981 My toys! My toys! I can't do this job without my toys! *** WARNING: Unencrypted electronic mail is not secure and may not be authentic. If you have any doubts as to the contents of this e-mail, please telephone the Geac representative who appears to be the sender to confirm the validity of this communication . NOTE: This electronic transmission is intended only for those to whom it is addressed. It may contain information that is confidential and/or privileged by law. Any claim to privilege is not waived or lost by reason of mistaken transmission of this information. If you are not the intended recipient, or the employee or agent responsible for delivery to the intended recipient, you must not review, distribute, copy or make any use of this transmission. In such case, please notify the sender by return e-mail and destroy all copies of same. *** -Original Message- From: Salvador Manzo [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 2:44 PM To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering http:[EMAIL PROTECTED] Also Known As: VBS/BritneyPic@MM, VBS_BRITNEYPIC.A, VBS/Britney-A -Original Message- From: John Matteson [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 07:01 To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering Britney virus? John Matteson; Exchange Manager Geac Corporate Infrastructure Systems and Standards (404) 239 - 2981 My toys! My toys! I can't do this job without my toys! -Original Message- From: Salvador Manzo [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 7:50 PM To: MS-Exchange Admin Issues Subject: RE: Question on attachment filtering NIMDA One of the vectors was a web page redirect. Not filtering any at this point... :( As for .CHM The BRITNEY virus is using this as a vector right now... -Original Message- From: Bob Peitzke [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 16:45 To: MS-Exchange Admin Issues Subject: Question on attachment filtering We are using Antigen 6.2 on our Exchange 5.5 server, with a set of filters for risky file types. We've been getting complaints from users about our filtering of *.htm attachments, and I'd like to get some advice on the value of this filter, or risk of disabling it. It seems a lot of our users' business partners send them html attachments. Trying to get them to change their ways would be about as frustrating as trying to get the Bush administration to prioritize the environment over energy revenue. Couldn't a scumbag e-terrorist embed a virus in an html file, and send it as an attachment that would get executed upon opening it, thus spreading the virus? And while we're on this subject, if we do continue filtering *.htm, shouldn't we also filter *.html and maybe *.chm? What are you guys doing in your shops? Cheers, - Bob Bob Peitzke Information Systems Manager Sander A. Kessler Associates 2850 Ocean Park Blvd., Suite 200 Santa Monica, CA, 90405-6200 office: 310.309.2280 cell: 310.613.2742 [EMAIL PROTECTED] List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
RE: Question on attachment filtering
NIMDA One of the vectors was a web page redirect. Not filtering any at this point... :( As for .CHM The BRITNEY virus is using this as a vector right now... -Original Message- From: Bob Peitzke [mailto:[EMAIL PROTECTED]] Sent: Friday, March 01, 2002 16:45 To: MS-Exchange Admin Issues Subject: Question on attachment filtering We are using Antigen 6.2 on our Exchange 5.5 server, with a set of filters for risky file types. We've been getting complaints from users about our filtering of *.htm attachments, and I'd like to get some advice on the value of this filter, or risk of disabling it. It seems a lot of our users' business partners send them html attachments. Trying to get them to change their ways would be about as frustrating as trying to get the Bush administration to prioritize the environment over energy revenue. Couldn't a scumbag e-terrorist embed a virus in an html file, and send it as an attachment that would get executed upon opening it, thus spreading the virus? And while we're on this subject, if we do continue filtering *.htm, shouldn't we also filter *.html and maybe *.chm? What are you guys doing in your shops? Cheers, - Bob Bob Peitzke Information Systems Manager Sander A. Kessler Associates 2850 Ocean Park Blvd., Suite 200 Santa Monica, CA, 90405-6200 office: 310.309.2280 cell: 310.613.2742 [EMAIL PROTECTED] List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
