[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AW: [Full-Disclosure] AV "feature" does more DDoS than Sobig

To: full-disclosure@lists.netsys.com
Subject: AW: [Full-Disclosure] AV "feature" does more DDoS than Sobig
From: vogt@hansenet.com
Date: Fri, 29 Aug 2003 11:47:57 +0200


> form of SPAM perhaps, another viri form perhaps also, at least a by
> product of the original virus/trojan.  Perhaps the best way 
> to deal with
> these, since most everyone contacted, the originator and the 
> AV vendor,
> are bit-bucketing all the e-mail responses to them, is to just promail
> filter then to /dev/null.  else, you become part of the perpetual
> 'SPAM/viri-by-product" problem, wasting and consuming bandwidth

Actually, I don't think that is a good solution. It protects your
inbox, but not your pipe, and it wakes nobody up to the problem.

I'm currently REJECTing all incoming "virus from you" mails. Maybe
the admins will act when they get the damage straight back into
their own mailboxes.

Then again, maybe THEY just file it all to /dev/null. Wouldn't be
surprised at the really responsible behaviour of setting up a
robot and then dropping the bounces it creates.


Tom Vogt

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: Re: [Full-Disclosure] Authorities eye MSBlaster suspect
Next by Date: RE: [Full-Disclosure] Need contact in the BTOPENWORLD.COM securit y department
Prev by thread: RE: [Full-Disclosure] Authorities eye MSBlaster suspect
Next by thread: [Full-Disclosure] [RHSA-2003:267-01] New up2date available with updated SSL certificate authority file
Index(es):
- Date
- Thread