> Can anyone tell me how a passworded zip file can be a threat?
>Um. I'm not sure. Let me google that for you...
http://bit.ly/1exqlOT
Well yeah, I actually did that exact Google before I sent this message. It's people's reasoning that I don't understand.
> And how would a user get a password for a malware zip file mailed to him > by a bot? > It's usually sent along in the email: "Here's the file we were talking about. The password is 'Mackerel.'" So, the user opens the file and clicks on the MalwareOfYourDoom.EXE because, well, it was an email (faked, most likely) from someone they know. The password-protected ZIP makes it through the perimeter defence undetected.
What are the odds that the recipient actually had a recent conversation about a file with a person chosen at random by a bot to put in the "From" field of that email? And then the person told the recipient that s/he was going to send the file in a zip archive. I mean really?
This is what I mean about risk-benefit analysis. Organizational "security experts" have taken to blocking all zip file attachments, and even have resorted to forcing people to use a file drop to pick up attachments instead of allowing them to come in with an email.
If you just tell people not to open any attachment that they don't know exactly what it is, you've achieved the same level of security without inconveniencing anybody or spending any extra money.
<SMH> Ken Dibble www.stic-cil.org _______________________________________________ Post Messages to: ProFox@leafe.com Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/5.2.1.1.1.20130921124120.01b2b...@pop-server.stny.rr.com ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.