On Sun, 4 Feb 2001, Brad Knowles wrote:
> At 10:16 AM +0800 2001/2/4, Ian C. Sison wrote:
>
> > Is there a url that I can visit that maintains/updates a set of entries in
> > /etc/postfix/header_checks so that I can keep mine up to date? I want to
> > keep up to date with the new e-mail viruses, hoaxes, junk and stuff and send
> > them all to hell. How about a header_checks mailing list... is there such a
> > thing? :->
>
> I've been talking about various sendmail+milter tools that I will
> be writing (much of which could use code that is shared with similar
> tools for postfix), and one of the things that has occurred to me is
> that we will need a mechanism for keeping an updated list of regular
> expressions, distributing updates, etc....
>
> Indeed, it should be possible to keep the list of regular
> expressions separate from the implementation mechanism, so that you
> could actually have three related projects -- one to maintain the
> list of expressions and to make that available, one to implement that
> list for sendmail+milter, and one to implement that list for postfix.
>
> In fact, I believe that there will ultimately probably be
> multiple different projects that maintain their own set of regular
> expressions (much like the multiple different DNS-based black lists
> that we have today), and IMO it would be very important to try to
> keep the maintenance of these lists and the handling of their
> distribution as a separate issue from the implementation of regular
> expression checking in SMTP MTAs such as sendmail and postfix.
>
>
> I suggest that we will need to coordinate these efforts, to try
> to minimize unnecessary redundancy, and to maximize useful idea &
> code sharing, etc.... A good first step towards that would probably
> be a dedicated mailing list.
A mailinglist would be a good venue for discussions on the topic, and we
can also adopt a similar scheme implemented by the internet junkbuster
proxy community - simply have a public URL which users can regularly
visit. The contents of the site are the signatures/regexp's of known
headers/attachments which contain trojans or virii.
True, this should be a separate project altogether, and not entirely
focused on postfix, but a project needs momentum, are there others on the
list willing to contribute to a project as worthwhile as this?
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
