>Hopefully Scott is taking a long lunch break. (He deserves it.) I am sure he
>will answer this when he has a chance.
Most likely, we will not be able to add code to alter the headers. It's
something we haven't done before, and don't want to do unless absolutely
necessary.
In this case, it's more of an educational issue than a programming
issue. If we alter the headers to remove all references to any possible
forged information, all that will be left is one Received: header, and the
only trusted information in there will be the IP address. So if anyone is
having serious problems with their users going crazy over the Klez virus,
they might want to consider replacing the %HEADERS% variable with the
%REMOTEIP% variable in the recip.eml file. It might also be worth
re-wording the file to mention that there are some viruses that forge the
return address, and the only way to track it down in those cases is by the
IP address.
-Scott
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.Virus mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.Virus". The archives can be found
at http://www.mail-archive.com.
