I saw some talk in the archives about this but since the virus writers have
forced a tighter file banning policys because of zip files are there any
plans to add support for more granular control over banned files on a per
user basis?
For example we need loan documents sent as exe files allowed
I saw some talk in the archives about this but since the virus writers have
forced a tighter file banning policys because of zip files are there any
plans to add support for more granular control over banned files on a per
user basis?
We are investigating the idea. It would likely require quite
I would like to be able to reverse the logic of BANEXT and block all
attachments except a small list of allowed ones.
ALLOWEXT doc
ALLOWEXT mdb
ALLOWEXT xls
ALLOWEXT pub
ALLOWEXT gif
ALLOWEXT jpg
That's all I can think of that I would allow, but if I noticed some being
blocked I could easily
I think this has been brought up a few times, I think it would be a good
option as well once it is tweaked.
You forgot PDF, txt, bmp, wks, wpd, ppt and maybe .zip : )
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dan Shadix
Sent: Tuesday, March 16,
I'm running F-Prot, McAfee, and AVG. Only McAfee is picking this up. Has anyone else
noticed this as well?
Declude Virus v1.78i25 caught the the W32/Bagle.gen!pwdzip virus in Info.zip
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from
I'm running F-Prot, McAfee, and AVG. Only McAfee is picking this up. Has
anyone else noticed this as well?
Declude Virus v1.78i25 caught the the W32/Bagle.gen!pwdzip virus in Info.zip
According to McAfee's website, that's Bagle.K (although I don't know why
they don't simply identify it as
Sorry, I know Ive brought this up
before but Im befuddled as to how plan old Norton Antivirus 2003 on my
XP desktop using outlook 2002 can pick up this virus within a passworded file
without the password.
This was held in the virus directory by Declude
and I released it to see if it
I'm testing Mcafee also.
I've also seen it pickup the W32/Bagle.gen!pwdrar in rar files.
Scott Fisher
Director of IT
Farm Progress Companies
[EMAIL PROTECTED] 03/16/04 03:48PM
I'm running F-Prot, McAfee, and AVG. Only McAfee is picking this up. Has anyone else
noticed this as well?
Declude
I didn't have 3.14d loaded in production long enough to form an opinion, but
3.14e seems to be working perfectly.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of John Shacklett
Sent: Tuesday, March 16, 2004 12:12 PM
To: [EMAIL PROTECTED]
Subject:
Sorry, I know I ve brought this up before but I m befuddled as to how plan
old Norton Antivirus 2003 on my XP desktop using outlook 2002 can pick up
this virus within a passworded file without the password.
Most likely, it was acting the way that anti-spam software does -- it
detected
Scott,
Thanks for the information. I'm using BANEZIPEXTS and BANZIPEXTS in my configuration
already with i25 and it is working well. I was curious why the other AV scanners
weren't picking this variant up and which one it was. Now I know. I must have been
catching these previously with great
I just upgraded to F-Prot 3.14E and noticed that it picked up the static-encrypted-zip
eicar test virus as follows:
The Declude Anti-Virus software on g-m-i.net has reported that you were sent an E-mail
from [EMAIL PROTECTED], containing the : EICAR_Test_File virus in the EICARENC.ZIP
On 16 Mar 2004 at 17:20, marc catuogno wrote:
Marc,
I do not have Norton so I cannot test it - have you sent to your desktop the
EicarDynamicEncodedZip from Scott's site? Results?
http://www.declude.com/tools/mailsend.html
From what I understand static zips are easy its the the dynamic zip/rars
Being new to Declude/F-prot I was testing an install. Running W2K I updated
F-Prot from 3.14C to 3.14E and restarted everything without rebooting.
Seems to be working fine on my desktop.
Is this safe on my mail server as well? I am not very comfortable rebooting
that often.
Thanks
DC
I just did and NAV didn't catch it but a quote from the e-mail is:
This E-mail contains the test eicar.com file in a dynamic encoded .ZIP
file. It is expected that no AV program will block this E-mail due to the
eicar.com file in it.
-Original Message-
From: [EMAIL PROTECTED]
Has anyone tried the -server Activate mail filter heuristics. switch
yet ?
Fritz
Frederick P. Squib, Jr.
Network Operations/Mail Administrator
Citizens Telephone Company of Kecksburg
http://www.wpa.net
() ascii ribbon campaign - against html mail
/\- against
If you run W2K professional usually f-prot asks you to reboot after the
upgrade. Running W2K Server it shouldn't ask you for any reboot at all... at
least that has been my experience.
So.. you don't have to worry about rebooting.
Regards
Luis Arango
-Original Message-
From: [EMAIL
So far version 3.14d had no problems. Now I find my self looking at a new
version... 3.14e. jejeje.. I just installed and no problems at all.
I will let the list know if I find any trouble with version 3.14e.
Luis Arango
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Scott, I am see a bunch on the following type entries in my virus logs:
Found potentially dangerous stuff in
M:\IMail\spool\Dc62d3de40042810d.vir\0.!
Found potentially dangerous stuff in
M:\IMail\spool\Dc800179a006ca25f.vir\0.htm!
Found potentially dangerous stuff in
19 matches
Mail list logo