> I was just thinking the same thing, that strictly going by > file name would not be best.
Well at least it would be ressource friendly. Some thoughts: Count attached file names but 1)ignore extensions like gif, jpg, pdf, ... or alternatively look only for known risky extensions like zip, exe, com... 2)ignore files that are below x and above y of file size 3)ignore messages comming from certain sources (this whitelist can be adapted after finding a false positive) As I can immagine this tool should work in the background and block messages only durring a new outbreak. (if it will work like we want) So it can/should also send a mail alert to the admin so that he immediately can keep an eye on whats going on there. Markus --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
