Add to that the fact that some viruses are designed to "clog" mail servers
by sending huge amounts of e-mail. You certainly wouldn't want to make
matters worse by doubling the amount of e-mail sent.
----- Original Message -----
From: Jason Haar <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, December 13, 1999 6:58 PM
Subject: Re: Oops, someone tried to send you a virus
> On Mon, Dec 13, 1999 at 04:14:29PM -0600, Dustin Miller wrote:
> > The more I think about it, though, the more I ask myself...
> >
> > Does the receipient REALLY need to know that someone tried to send them
an
> > infected file? If the sender gets a bounce message from MAILER-DAEMON
that
>
> I think you're spot-on. As far as I'm concerned, I think it would be
totally
> appropriate to DELETE ON RECEIVAL any mail message containing a virus. All
> this dicking around with cleaning doesn't stop the fact the the senders
> system is compromised and they need to be fixed before anything can be
> trusted from them. I wouldn't go that far - but I certainly think it's an
> appropriate option :-)
>
> The GPL'ed virus scanner for qmail I'm working on
> (http://www.geocities.com/jhaar/) does send reports to a central
> "virus-reports" address as well as the envelope sender - and it does
remove
> mailing-list/postmaster addresses first...
>
> As you said, the primary objective of a sites virus scanner is to stop
> viruses entering or leaving the site - not to baby-sit other site's
users...
>
> - cold, but true ;-)
>
> --
> Cheers
>
> Jason Haar
>
> Unix/Network Specialist, Trimble NZ
> Phone: +64 3 3391 377 Fax: +64 3 3391 417
>
