Hi All,
Below are the headers of a message that got caught by the CR vulnerability
test in Declude Virus. I got an email from the
[EMAIL PROTECTED] bitching me out because I was an idiot, as an
admin I should know how to read headers, and that the headers clearly
indicate that this email had nothing to do with @mypersonalemail.com, and
that my bounce messages getting sent to him are just as bad as the spam they
are generated from. From what I can tell, he's really right (except about
the idiot part. :-)).
How can we handle this? We don't want to disable notifications altogether
(and I think that's our only option in D.Virus, on or off). Most (if not
all) of the CR catches are SPAM. Can notifications for ALL other tests that
Declude Virus does be seperated from the 'generic' virus notification, much
like the bannotify.eml does?
- Tony Gray
Intouch Communications, Inc.
### Original Message Headers ###
Received: from mail.elt.it [212.177.120.248] by mail.intouchmi.com with
ESMTP
(SMTPD32-6.06) id A25E3690056; Thu, 07 Mar 2002 18:06:06 -0500
Received: from mindspring (66-2-78-68-oc-03.cvx.algx.net [66.2.78.68]) by
mail.elt.it with SMTP (Microsoft Exchange Internet Mail Service Version
5.5.2653.13)
id FGH9ZP4N; Tue, 5 Mar 2002 00:32:40 +0100
Message-ID: <00001afe799d$00007c1c$000022e2@mindspring
(user-3qt5hn.dialup.mindspring.com[99.174.150.55]) by smtp6.mindspring.com
(8.9.3/8.8.5) with SMTP id OAA06398 from 110140321worldnet.att.net
([102.70.21.32]) by mtiwmhc98.worldnet.att.net (InterMail v03.02.07.07
118-134) with SMTP id<[EMAIL PROTECTED]>
myrop (ew6.southwind.net [216.53.98.70]) by onyx.southwind.netfrom
homepage.com (114.230.197.216) by newmail.spectraweb.ch from default
(m202.2-25.warwick.net [218.242.202.80]) byhost.warwick.net
(8.10.0.Beta10/8.10.0.Beta10) with SMTP id
e9GKEKk19201mcpeely.concentric.net (mcfeely.concentric.net
[217.15.198.83])by darius.concentric.net (8.9.1a/(98/12/15 5.12)) id
PAA04003from default (m202.2-25.warwick.net [218.242.202.80])
byhost.warwick.net (8.10.0.Beta10/8.10.0.Beta10) with SMTP id
e0GKEKk19201taffar (pool-209-138-205-92-dlls.grid.net [219.138.205.92]) by
smtp7.atl.mindspring.net (ts029d25.nil-ny.concentric.net [216.173.24.181])>
To: <Undisclosed Recipients>
From: [EMAIL PROTECTED]
Subject: RE:Don't wait any longer!
Date: Mon, 04 Mar 2002 14:02:24 -0800
MIME-Version: 1.0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Priority: 3
X-MSMail-Priority: Normal
Errors-To: [EMAIL PROTECTED]
Return-Path: [EMAIL PROTECTED]
X-Mailer: Mozilla 4.72 [en] (Win98; U)
X-Intouch-Note: Report mail abuse to [EMAIL PROTECTED]
X-Intouch-Note: From Host:[][212.177.120.248]
X-Intouch-Note: Sender:[[EMAIL PROTECTED]]
Spoolfile:[Df25e056.SMD]
X-Intouch-Note: SPAM tests failed:[] Weight:[0]
### End Original Message Headers
Sincerely,
Tony Gray
System Administrator
[EMAIL PROTECTED]
--------------------------------------------
Intouch Communications, Inc.
1027 Church Street
Flint, MI 48502
Phone: (810) 239-7243
Toll Free: 1-866-929-3278 (within MI)
Fax: (810) 233-7192
--------------------------------------------
---
[This E-mail was scanned for viruses by http://www.intouchmi.com]
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
This E-mail came from the Declude.Virus mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.Virus". You can E-mail
[EMAIL PROTECTED] for assistance. You can visit our web
site at http://www.declude.com .
