On Sat, 27 Apr 2002, Glenn McCorkle wrote: > I got 2 of them from my own sister. > The virus def files for F-Prot dated 17 April still do not identify > these attachments as viri.
I've had a procmail recipe in place for some time which dumps all such mails into "spamfolder" where they get swept out once they're 30 days old. Once in a while I look in ~/mail/spamfolder just to make sure none of the headers look like they might actually be legitimate e-mails. Once an e-mail was from someone I knew... it was a mail to a BCC list containing JavaScript and multipart yadayada. Doing it this way means any new virus automatically goes in there. I didn't even know about KLEZ until I read about it here. Looked in my spamfolder and discovered I had indeed already received three of them. procmail recipe: :0 Bf * Content-Type: application/octet-stream; | formail -b -f -A "$trash_header ordinary tag-contents body binary" Acts on any e-mail containing a binary/executable attachment... which includes all these nuisance Windows virii. - Steve
