Virus was detected in the message
The message was not delivered to the following recipients: dni...@gin.global-one.ru It was not delivered because infected objects have been detected q9JIpotu019641 INFECTED LINFECTED Email-Worm.Win32.Mydoom.m The header of the message follows: Received: from freebsd.org (93-45-210-251.ip104.fastwebnet.it [93.45.210.251]) by mail1.rosprint.net (8.13.1/8.13.1) with ESMTP id q9JIpotu019641 for dni...@gin.global-one.ru; Fri, 19 Oct 2012 22:51:51 +0400 From: freebsd-questions@freebsd.org To: dni...@gin.global-one.ru Subject: Date: Fri, 19 Oct 2012 20:51:56 +0200 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary==_NextPart_000_0013_3AC05767.9E5B4780 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Unable to reply immediately Re: [WARNING: VIRUS REMOVED] Delivery reports about your e-mail
I shall be reading emails only very intermittently until August 7th, but will reply as soon as I can. If you have a query concerning the MA in Aegean Archaeology, please contact Kathryn Goldsack (k.golds...@sheffield.ac.uk). Sue Sherratt -- Dr E.S. Sherratt Department of Archaeology University of Sheffield Northgate House West Street Sheffield S1 4ET http://www.archatlas.dept.shef.ac.uk/Home.php ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
c150A.pilship.com Virus removed from message
The following viruses were repaired or dropped from the message (MID 10274031) 'W32/MyDoom-O' And, Attachments dropped during repair. Actions taken: Message delivered Original Envelope Sender: From freebsd-questions@freebsd.org Thu May 19 15:39:13 2011 Message Headers: From: freebsd-questions@freebsd.org To: chris@sha.pilship.com Subject: Error Date: Thu, 19 May 2011 14:36:08 +0700 Content-Type: multipart/mixed; boundary==_NextPart_000_0002_CCEB72FA.241A7AAE X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Anti-Virus Notification
This is an automatically generated Anti-Virus notification. A virus (W32/mydoo...@mm!zip) has been detected by the AV engine(McAfee Engine). The action triggered and data are given below. Message is dropped.. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Out of Office Re: {Virus?} error
I will be out of the office until Aug 16. -- Regards, Dean Hudek Laboratory Physicist Director of Instructional Laboratories Department of Physics Brown University dean_hu...@brown.edu (401) 863-2062 Office (401) 225-6849 Cell ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Anti virus, anti spam step guide.
Hello. Thanks a lot for the advice. I have tried with spamassasin but for some reason can not having work correctly with sendmail. I am reading in detail documentation. I know this sounds like something stupid but I am starting my third try starting from zero, for some reason everything install correcly and at the end have a non receiving email installation (have checked port on inetd, under sendmail configuration, nothing). What I do not get is what components do I need. Just spamassasin or spamd only , anyway, learning and having fun with it until I can know how to do it. Otherwise instead of help that organization will be giving more problems besides the ones they have. I will try openwebmail. Thanks a lot. At 01:54 a.m. 08/08/2010, Marwan Sultan wrote: Hi.. For WebMail that has everything you want: www.opebwebmail.org For pop3 : qpopper For Spam: SpamAssassin Default sendmail is good. all the above is available from ports, I would recommend a manual install for openwebmail instead of ports so you can follow and know how things work. You can install spamassassin from ports, and follow the instructions. -Marwan Sultan Date: Wed, 4 Aug 2010 09:19:19 -0500 To: freebsd-questions@freebsd.org From: jbiq...@icsmx.com Subject: Anti virus, anti spam step guide. Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). I have been working with it for some years but I am not an expert at all. I need to help some non-profit organizations that received some 2 year old computers as donation and they will use it for email services. They have not tech people, so the idea is that I can help them to implement that solution the easiest way so maybe one of the teacher there can try to replicate the solution. UNtil now I always have used Sendmail as it is installed, no filters besided the spamcop ones but that was enough for my personal use. I know some of you will tell that change to postfix or another MTA and that instead using POP3 that I have to use another tool (courier, fetchail, imap (any) etc etc). I ca do it for sur and I do not want to star a war , again, under what MTA is the best. I just would like to have the best and easiest solution for them. Once installed they only will be creating new accounts, changing paswords, deleting accounts. Nothing else. Ah, another thing if possible is to implement a webmail but that will be an extra gem if possible. Any resources? Any suggestions based in experience? (I have one machine of them that I will use for testing the solution). Thanks in advance Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Anti virus, anti spam step guide.
Hi.. For WebMail that has everything you want: www.opebwebmail.org For pop3 : qpopper For Spam: SpamAssassin Default sendmail is good. all the above is available from ports, I would recommend a manual install for openwebmail instead of ports so you can follow and know how things work. You can install spamassassin from ports, and follow the instructions. -Marwan Sultan Date: Wed, 4 Aug 2010 09:19:19 -0500 To: freebsd-questions@freebsd.org From: jbiq...@icsmx.com Subject: Anti virus, anti spam step guide. Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). I have been working with it for some years but I am not an expert at all. I need to help some non-profit organizations that received some 2 year old computers as donation and they will use it for email services. They have not tech people, so the idea is that I can help them to implement that solution the easiest way so maybe one of the teacher there can try to replicate the solution. UNtil now I always have used Sendmail as it is installed, no filters besided the spamcop ones but that was enough for my personal use. I know some of you will tell that change to postfix or another MTA and that instead using POP3 that I have to use another tool (courier, fetchail, imap (any) etc etc). I ca do it for sur and I do not want to star a war , again, under what MTA is the best. I just would like to have the best and easiest solution for them. Once installed they only will be creating new accounts, changing paswords, deleting accounts. Nothing else. Ah, another thing if possible is to implement a webmail but that will be an extra gem if possible. Any resources? Any suggestions based in experience? (I have one machine of them that I will use for testing the solution). Thanks in advance Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Anti virus, anti spam step guide.
Its www.openwebmail.org NOT opewebmail - typo :) If you need any help setting things up for your non-profit organization, let me know. Hi.. For WebMail that has everything you want: www.opebwebmail.org For pop3 : qpopper For Spam: SpamAssassin Default sendmail is good. all the above is available from ports, I would recommend a manual install for openwebmail instead of ports so you can follow and know how things work. You can install spamassassin from ports, and follow the instructions. -Marwan Sultan Date: Wed, 4 Aug 2010 09:19:19 -0500 To: freebsd-questions@freebsd.org From: jbiq...@icsmx.com Subject: Anti virus, anti spam step guide. Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). I have been working with it for some years but I am not an expert at all. I need to help some non-profit organizations that received some 2 year old computers as donation and they will use it for email services. They have not tech people, so the idea is that I can help them to implement that solution the easiest way so maybe one of the teacher there can try to replicate the solution. UNtil now I always have used Sendmail as it is installed, no filters besided the spamcop ones but that was enough for my personal use. I know some of you will tell that change to postfix or another MTA and that instead using POP3 that I have to use another tool (courier, fetchail, imap (any) etc etc). I ca do it for sur and I do not want to star a war , again, under what MTA is the best. I just would like to have the best and easiest solution for them. Once installed they only will be creating new accounts, changing paswords, deleting accounts. Nothing else. Ah, another thing if possible is to implement a webmail but that will be an extra gem if possible. Any resources? Any suggestions based in experience? (I have one machine of them that I will use for testing the solution). Thanks in advance Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Anti virus, anti spam step guide.
Anti-virus, the only free one I know about is calm av. Should work on FreeBSD: http://www.clamav.net/lang/en/ and /usr/ports/security/clamav spamd is a black/white list spam filter. I also heard SpamAssassin is good, but can't find it in ports. For mail I like Courier-imap. It's imap, has ssl and has lots of ways to auth (I just auth with pamd which is a normal system account). qmail is also popular, though I don't have much experience with it. sendmail/pop3 also works. squirrel mail is a popular webmail program: /usr/ports/mail/squirrelmail Also, I've never used it; but webmin might be good if you want them to maintain use accounts themselves: /usr/ports/sysutils/webmin On 8/4/2010 9:19 AM, Jorge Biquez wrote: Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). I have been working with it for some years but I am not an expert at all. I need to help some non-profit organizations that received some 2 year old computers as donation and they will use it for email services. They have not tech people, so the idea is that I can help them to implement that solution the easiest way so maybe one of the teacher there can try to replicate the solution. UNtil now I always have used Sendmail as it is installed, no filters besided the spamcop ones but that was enough for my personal use. I know some of you will tell that change to postfix or another MTA and that instead using POP3 that I have to use another tool (courier, fetchail, imap (any) etc etc). I ca do it for sur and I do not want to star a war , again, under what MTA is the best. I just would like to have the best and easiest solution for them. Once installed they only will be creating new accounts, changing paswords, deleting accounts. Nothing else. Ah, another thing if possible is to implement a webmail but that will be an extra gem if possible. Any resources? Any suggestions based in experience? (I have one machine of them that I will use for testing the solution). Thanks in advance Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Anti virus, anti spam step guide.
Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). I have been working with it for some years but I am not an expert at all. I need to help some non-profit organizations that received some 2 year old computers as donation and they will use it for email services. They have not tech people, so the idea is that I can help them to implement that solution the easiest way so maybe one of the teacher there can try to replicate the solution. UNtil now I always have used Sendmail as it is installed, no filters besided the spamcop ones but that was enough for my personal use. I know some of you will tell that change to postfix or another MTA and that instead using POP3 that I have to use another tool (courier, fetchail, imap (any) etc etc). I ca do it for sur and I do not want to star a war , again, under what MTA is the best. I just would like to have the best and easiest solution for them. Once installed they only will be creating new accounts, changing paswords, deleting accounts. Nothing else. Ah, another thing if possible is to implement a webmail but that will be an extra gem if possible. Any resources? Any suggestions based in experience? (I have one machine of them that I will use for testing the solution). Thanks in advance Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Anti virus, anti spam step guide.
On Aug 4, 2010, at 9:19 AM, Jorge Biquez wrote: Hello all. I am looking documentation for implementing, the easiest way anti virus and anti spam configuration for non tech users and out of the box after installing FreeBSD (actually using 7.3 Release). [snip] Do not edit a reply to another thread into something else. This is not the same thing as a new email. Address a new email to the list with your new thread. -- David Kelly N4HHE, dke...@hiwaay.net Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Virus scanning for Exim mail server
I have been looking on the FreeBSD site and ports for a virus scanner to use with an Exim mail server, without much luck. Does anyone know of command line virus scanners (open source or commercial) that work with FreeBSD 7.2 and Exim?? Thanking you in advance, David R. Stegner ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Virus scanning for Exim mail server
Hi, Does anyone know of command line virus scanners (open source or commercial) that work with FreeBSD 7.2 and Exim?? Clamav, open source, in the ports, command line and daemon mode. Kaspersky, commercial, command line and daemon mode for the mail server package (something undocumented called aveserver and aveclient). The advantage of a daemon scanner, when used in conjunction with a mail server is that the scanner runs in the background and scans the files that are submited to it, as the scanner is always running, it does not take time loading the virus patterns every time, so there is no start-up over head (few seconds) and the scan is very fast. I think there are others, but these are the one I use. They both integrate fine in amavisd-new (and I beleive amavisd-new works with Exim). Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Commercial anti-virus
Hi, What commercial anti-virus would you recommand for FreeBSD 7.2? It must have a daemon allowing on-demand scan: submit a file name to the daemon, it has all the virus definition preloaded and can immediately scan the file without any pre-processing time wasted. This is to be included in amavisd-new. So far I have been using Kaspersky, but the newer version that run on freeBSD 6 and 7 do not include the kavdaemon anymore. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
pop3 proxy server (antispam/virus)
Hi all !! Somebody knows a pop3 proxy server to use for spam/virus filter ? My users have his pop3 accounts in a external server (ISP). Thanks in advance. roberto -- Ing. Roberto Pereyra ContenidosOnline http://www.contenidosonline.com.ar ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: pop3 proxy server (antispam/virus)
Not sure what you're looking for. But i've done something like it with postfix, amavisd-new, and dovecot. You can spread the load to 3 different servers or more if needed. Example box 1 (postfix), box 2 (amavisd-new, spamassassin, clamav), box 3 (dovcot). Roberto Pereyra wrote: Hi all !! Somebody knows a pop3 proxy server to use for spam/virus filter ? My users have his pop3 accounts in a external server (ISP). Thanks in advance. roberto -- Ing. Roberto Pereyra ContenidosOnline http://www.contenidosonline.com.ar ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/pop3-proxy-server-%28antispam-virus%29-tf3804500.html#a10771377 Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Broken.Executable gefunden
Sehr geehrte Damen und Herren, in dem E-Mail mit dem Betreff 'Mail System Error - Returned Mail' (gesendet am Tue, 8 Feb 2000 16:01:32 -0300) mit der angegebenen Absenderadresse '[EMAIL PROTECTED]' wurde der Virus 'Broken.Executable' gefunden. Aus diesem Grund wurde die E-Mail nicht zugestellt! Ihr Inode-Team -- Dear Ladies and Gentlemen, the mail with the Subject 'Mail System Error - Returned Mail' (sent on Tue, 8 Feb 2000 16:01:32 -0300) with the sender address specified as '[EMAIL PROTECTED]' contained a virus known as 'Broken.Executable'. Due to this reason the Mail has not been delivered! Your Inode-Team --- Headers of original mail follow: Received: from localhost ([127.0.0.1]:37697 helo=smartmx-06.inode.at) by smartmx-06.inode.at with esmtp (Exim 4.50) id 1Hol9P-0003iH-Qe for [EMAIL PROTECTED]; Thu, 17 May 2007 20:56:35 +0200 Received: from [200.225.227.165] (port=15044 helo=freebsd.org) by smartmx-06.inode.at with esmtp (Exim 4.50) id 1Hol9N-0003gN-Ea for [EMAIL PROTECTED]; Thu, 17 May 2007 20:56:35 +0200 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Mail System Error - Returned Mail Date: Tue, 8 Feb 2000 16:01:32 -0300 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary==_NextPart_000_0002_B1D9EF3C.81180CC6 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus intercepted
A message you sent to [EMAIL PROTECTED] contained Worm.Mydoom.M and has not been delivered. This email has been scanned for viruses! www.netpathway.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus intercepted
A message you sent to [EMAIL PROTECTED] contained Worm.Mydoom.M and has not been delivered. This email has been scanned for viruses! www.netpathway.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
freebsd and anti-virus
hi all: i have a freebsd server and used as file storage. some of files being stored on that server are virus infected. how could I clean them up? could the norton anti-virus software on my laptop clean up the virus when i download those files from the server? does norton do that with ftp/ssh? tia Be a PS3 game guru. Get your game face on with the latest PS3 news and previews at Yahoo! Games. http://videogames.yahoo.com/platform?platform=120121 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd and anti-virus
Hello, gahn schrieb: i have a freebsd server and used as file storage. some of files being stored on that server are virus infected. how could I clean them up? could the norton anti-virus software on my laptop clean up the virus when i download those files from the server? does norton do that with ftp/ssh? why don't you want to use a virus scanner on the freebsd server? You could use ClamAV which exists in the port collection: /usr/ports/security/clamav Kind regards, Oliver -- Oliver Koch Phone: +49-(0)5323-72-2626 Computer Center Fax:+49-(0)5323-72-3536 Clausthal University of Technology E-Mail: [EMAIL PROTECTED] Erzstraße 51 Web: http://www.rz.tu-clausthal.de 38678 Clausthal-Zellerfeld, Germany signature.asc Description: OpenPGP digital signature
['BHCC Watchdog': Virus detected]
Watchdog Server: Tenacity --- Your mail item contained attachments that have been infected with a virus. --- Mail-Info From: [EMAIL PROTECTED] To:[EMAIL PROTECTED] Rec.: [EMAIL PROTECTED] Date: 10/11/2006 01:02:01 Subject: Delivery reports about your e-mail --- file contains virus:document.zip Notice to recipient: The information contained in this electronic mail message is intended only for the use of the individual to whom it is addressed and may contain information which is privileged and confidential, the disclosure of which is prohibited by law. If the reader of this message is not the intended recipient, please note that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error please notify the sender immediately. Thank you in anticipation of your co-operation. You can visit our website at http://www.brighton-hove.gov.uk Please consider the environment, only print out this email if absolutely necessary. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: freebsd-questions@freebsd.org To: [EMAIL PROTECTED] Cc: Subject: [EMAIL PROTECTED] Scanning part [] Scanning part [transcript.zip] Attachment validity check: passed. Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
MDaemon Warning - Virus Found
The following message had attachment(s) which contained viruses: From : freebsd-questions@freebsd.org To: [EMAIL PROTECTED] Subject : [***SPAM*** Score/Req: 11.1/5.0] [EMAIL PROTECTED] Date : Thu, 12 Oct 2006 17:02:51 +0600 Message-ID: [EMAIL PROTECTED] AttachmentVirus name Action taken -- [EMAIL PROTECTED]Email-Worm.Win32.Mydoom.m Removed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus/Disallowed Object Notification[StampID=722228b4eafa60238e7005c22d66ff11]
Date: Wed Sep 20 10:25:57 2006 NOTIFICATION start This email was scanned for viruses by ServGate EdgeForce security gateway. [Original Message Header] From: [EMAIL PROTECTED] Subject: rmkjnw [Detail] The following action has been applied to the below attachments: Attachment Name: attachment.scr, Virus Found: W32/[EMAIL PROTECTED], Status: Deleted NOTIFICATION end ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Subject: Returned mail: Data format error Scanning part [] Scanning part [instruction.zip] Attachment validity check: passed. Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O Virus identity found: W32/MyDoom-O ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
VIRUS IN YOUR MAIL
V I R U S A L E R T A VIRUS WAS FOUND IN YOUR MAIL : To: [EMAIL PROTECTED] Subject: [EMAIL PROTECTED] Virus Family: W32/[EMAIL PROTECTED] Delivery of the email was stopped! = ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: {Virus?}
Due to the amount of spam being received by [EMAIL PROTECTED] I have blocked this address. Please re-send your email to [EMAIL PROTECTED] --Alan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Alerte Virus
Le mail envoye a [EMAIL PROTECTED] le vendredi 23 septembre contient un virus ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: document.zip) you sent to [EMAIL PROTECTED] contains a virus. (on tssvcs01.tss-tv.co.jp) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
virus found in sent message Mail Delivery (failure [EMAIL PROTECTED])
Attention: [EMAIL PROTECTED] A virus was found in an Email message you sent. This Email scanner intercepted it and stopped the entire message reaching its destination. The virus was reported to be: Worm.SomeFool.P Please update your virus scanner or contact your IT support personnel as soon as possible as you have a virus on your system. Your message was sent with the following envelope: MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] ... and with the following headers: --- MAILFROM: [EMAIL PROTECTED] Received: from unknown (HELO bitmesra.ac.in) (202.162.48.18) by mail.bitmesra.ac.in with SMTP; 2 Jul 2005 02:34:30 - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Mail Delivery (failure [EMAIL PROTECTED]) Date: Sat, 2 Jul 2005 07:54:24 +0530 MIME-Version: 1.0 Content-Type: multipart/related; type=multipart/alternative; boundary==_NextPart_000_001B_01C0CA80.6B015D10 X-Priority: 3 X-MSMail-Priority: Normal --- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
on demand virus scanning of XP share
Hello, I've got clamav installed on a 5.4 box and i'm trying to use it to do demand scanning of a windows XP machine. I'm atempting to mount the system's C$ share, but although it shows up in the listing of smbclient -L //SystemName -N atempting to mount it via mount_smbfs mount_smbfs //[EMAIL PROTECTED]/C$ /mnt produces either a timeout error or an address not found message depending on whether the -N option is used. Is this possible what i'm atempting to do? Thanks. Dave. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: on demand virus scanning of XP share
On Thursday 09 June 2005 11:28 am, dave wrote: Hello, I've got clamav installed on a 5.4 box and i'm trying to use it to do demand scanning of a windows XP machine. I'm atempting to mount the system's C$ share, but although it shows up in the listing of smbclient -L //SystemName -N atempting to mount it via mount_smbfs mount_smbfs //[EMAIL PROTECTED]/C$ /mnt produces either a timeout error or an address not found message depending on whether the -N option is used. Is this possible what i'm atempting to do? Thanks. Dave. I accomplished something very similar using clamav and sharity-light. Sharity-light allows you to mount Windows shares; and can be found in the ports at /usr/ports/net/sharity-light. Dru Lavigne published a tutorial regarding sharity-light at: http://www.onlamp.com/pub/a/bsd/2000/07/12/FreeBSD_Basics.html Best of luck, Andrew Gould ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Bootable CD with virus checking for NTFS
I've been searching around for a bootable CD that can virus fix NTFS partitions. Obviously that means it needs to be able to mount NTFS partitions as RW. I've found several CD's based on Linux that will check in RO mode, but none that will (safely anyways) in RW. Pipe dream? Heck, doesn't even need to be free as long as the cost is reasonable. Just so extra emails aren't generated, I've tried: Helix Ultimate Boot CD (this one claims NTFS RW, but when I boot, it appears to be RO... Haven't actually tried using on an infected system yet) Auditor Whoppix Thanks! Brent ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bootable CD with virus checking for NTFS
On Wed, 8 Jun 2005, Brent Wiese wrote: I've been searching around for a bootable CD that can virus fix NTFS partitions. Obviously that means it needs to be able to mount NTFS partitions as RW. I've found several CD's based on Linux that will check in RO mode, but none that will (safely anyways) in RW. Pipe dream? Heck, doesn't even need to be free as long as the cost is reasonable. Just so extra emails aren't generated, I've tried: Helix Ultimate Boot CD (this one claims NTFS RW, but when I boot, it appears to be RO... Haven't actually tried using on an infected system yet) Auditor Whoppix Just so you know, I'm pretty sure all of the LiveCD's go RO by default, even if the kernel is compiled to allow RW. That's just a safety precaution against users that don't know the limits and dangers of writing to an NTFS volume. You can still pop open a terminal and re-mount it RW by hand, although I would suggest running clam (that's what you're using, right?), and if you FIND a virus, mount it RW and either remove it by hand or run clam again again allow clam to clean up the mess then. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bootable CD with virus checking for NTFS
On Wed, Jun 08, 2005 at 08:44:46AM -0700, Brent Wiese wrote: I've been searching around for a bootable CD that can virus fix NTFS partitions. Obviously that means it needs to be able to mount NTFS partitions as RW. http://www.nu2.nu/pebuilder/ smime.p7s Description: S/MIME cryptographic signature
[Virus detected]
Sophos Plc MailMonitor for Domino/D R1.0(3.303a) Server: nidec_sgp2 --- Your email contained infected attachment(s). For advice consult your system administrator. --- Mail-Info From: [EMAIL PROTECTED] To: CN=Merrisa Tay/O=nidec_asia Rec.: CN=Merrisa Tay/O=nidec_asia Date: 05/31/2005 02:31:17 PM Subject:Mail Delivery (failure [EMAIL PROTECTED]) --- File: [message.scr ]State: [file contains virus] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virus question
On Sat, 2005-02-12 at 05:59, Bart Silverstrim wrote: On Feb 11, 2005, at 1:55 PM, Karen Donathan wrote: To Whom it may concern: My name is Karen Donathan and I am a computer science teacher at George Washington High School in Charleston, WV. We run our website (http://gwhs.kana.k12.wv.us) on a FreeBSD server. This project was given to me, and I am afraid that I really should know more about how this works. My question is as follows: How can I run a virus scan on my system? What scan do you recommend? The reason I am asking this question is that our school system administrator just found that there were some files infected with Klez.h in the webroot directory of our server. He found this out as he downloaded some files from this directory to our Windows-XP school server, and Norton flagged it right away. Any suggestions? The FreeBSD server itself is immune to that virus. I'd look at the files and ask how they got there (who put them there). Second, personally I'd recommend you go into the ports tree and install ClamAV. Then you can run Clamscan and that will flag which files are infected. Then you can go through and delete them or quarantine them. -Bart Sophos is a commercial virus scanner that can be installed and run on both FreeBSD and Windows platforms. (Obviously different runtime apps, but the identity files etc are common) And once you have purchased your license, updates of both engines and the .ide files can be scripted via cron very easily. We also use Spamassassin in the firewall DMZ... (belts, braces and bootlaces...) NB the Mailmarshal tag is part of the Sophos stuff too.. its a mail system scanner / filter system that uses the Sophos scanner underneath the hood. ***This Email has been scanned for Viruses by MailMarshal.*** -- Murray Taylor Special Projects Engineer - Bytecraft Systems Entertainment P: +61 3 8710 2555 F: +61 3 8710 2599 D: +61 3 9238 4275 M: +61 417 319 256 E: [EMAIL PROTECTED] or visit us on the web http://www.bytecraftsystems.com http://www.bytecraftentertainment.com --- The information transmitted in this e-mail is for the exclusive use of the intended addressee and may contain confidential and/or privileged material. Any review, re-transmission, dissemination or other use of it, or the taking of any action in reliance upon this information by persons and/or entities other than the intended recipient is prohibited. If you received this in error, please inform the sender and/or addressee immediately and delete the material. E-mails may not be secure, may contain computer viruses and may be corrupted in transmission. Please carefully check this e-mail (and any attachment) accordingly. No warranties are given and no liability is accepted for any loss or damage caused by such matters. --- ***This Email has been scanned for Viruses by MailMarshal.*** ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus question
To Whom it may concern: My name is Karen Donathan and I am a computer science teacher at George Washington High School in Charleston, WV. We run our website (http://gwhs.kana.k12.wv.us) on a FreeBSD server. This project was given to me, and I am afraid that I really should know more about how this works. My question is as follows: How can I run a virus scan on my system? What scan do you recommend? The reason I am asking this question is that our school system administrator just found that there were some files infected with Klez.h in the webroot directory of our server. He found this out as he downloaded some files from this directory to our Windows-XP school server, and Norton flagged it right away. Any suggestions? Thank you, Karen Donathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virus question
On Feb 11, 2005, at 1:55 PM, Karen Donathan wrote: To Whom it may concern: My name is Karen Donathan and I am a computer science teacher at George Washington High School in Charleston, WV. We run our website (http://gwhs.kana.k12.wv.us) on a FreeBSD server. This project was given to me, and I am afraid that I really should know more about how this works. My question is as follows: How can I run a virus scan on my system? What scan do you recommend? The reason I am asking this question is that our school system administrator just found that there were some files infected with Klez.h in the webroot directory of our server. He found this out as he downloaded some files from this directory to our Windows-XP school server, and Norton flagged it right away. Any suggestions? The FreeBSD server itself is immune to that virus. I'd look at the files and ask how they got there (who put them there). Second, personally I'd recommend you go into the ports tree and install ClamAV. Then you can run Clamscan and that will flag which files are infected. Then you can go through and delete them or quarantine them. -Bart ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virus question
On 02/11/05 01:55 PM, Karen Donathan sat at the `puter and typed: To Whom it may concern: My name is Karen Donathan and I am a computer science teacher at George Washington High School in Charleston, WV. We run our website (http://gwhs.kana.k12.wv.us) on a FreeBSD server. This project was given to me, and I am afraid that I really should know more about how this works. My question is as follows: How can I run a virus scan on my system? What scan do you recommend? The reason I am asking this question is that our school system administrator just found that there were some files infected with Klez.h in the webroot directory of our server. He found this out as he downloaded some files from this directory to our Windows-XP school server, and Norton flagged it right away. I was doing the same thing last night at 11:30. Norton flagged over 100 instances of Klez on my sister-in-laws business computer. There were at least a dozen others, including a keylogger, backdoor, and at least 8 other trojans, but Klez was definitely the most proliferated. Fun, ain't it? Any suggestions? As suggested by another poster, Clam-AV. I use it and it catches all kinds of nasties. There is also f-prot, which you can set up as a backup scanner through Amavisd-new. I use Amavisd-new with postfix as my SMTP server, but if you're using Sendmail, there may be other options you want to check out. Start with the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/index.html particularly chapter 4, if you're not familiar with the ports, and chapter 22 to get a good overview of the options involving email. Good luck Lou -- Louis LeBlanc FreeBSD-at-keyslapper-DOT-net Fully Funded Hobbyist, KeySlapper Extrordinaire :) Please send off-list email to: leblanc at keyslapper d.t net Key fingerprint = C5E7 4762 F071 CE3B ED51 4FB8 AF85 A2FE 80C8 D9A2 Corry's Law: Paper is always strongest at the perforations. pgpJZR4aMVG50.pgp Description: PGP signature
Re: Virus question
On 02/11/05 01:55 PM, Karen Donathan sat at the `puter and typed: To Whom it may concern: My name is Karen Donathan and I am a computer science teacher at George Washington High School in Charleston, WV. We run our website (http://gwhs.kana.k12.wv.us) on a FreeBSD server. This project was given to me, and I am afraid that I really should know more about how this works. My question is as follows: How can I run a virus scan on my system? What scan do you recommend? f-prot makes a virus scanner for FreeBSD. http://www.f-prot.com/products/corporate_users/unix/ The reason I am asking this question is that our school system administrator just found that there were some files infected with Klez.h in the webroot directory of our server. Do you know how the virus got into the webroot of your server? You should find out. He found this out as he downloaded some files from this directory to our Windows-XP school server, and Norton flagged it right away. I was doing the same thing last night at 11:30. Norton flagged over 100 instances of Klez on my sister-in-laws business computer. There were at least a dozen others, including a keylogger, backdoor, and at least 8 other trojans, but Klez was definitely the most proliferated. Fun, ain't it? Any suggestions? As suggested by another poster, Clam-AV. I use it and it catches all kinds of nasties. There is also f-prot, which you can set up as a backup scanner through Amavisd-new. I use Amavisd-new with postfix as my SMTP server, but if you're using Sendmail, there may be other options you want to check out. Start with the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/index.html particularly chapter 4, if you're not familiar with the ports, and chapter 22 to get a good overview of the options involving email. Good luck Lou -- Louis LeBlanc FreeBSD-at-keyslapper-DOT-net Fully Funded Hobbyist, KeySlapper Extrordinaire :) Please send off-list email to: leblanc at keyslapper d.t net Key fingerprint = C5E7 4762 F071 CE3B ED51 4FB8 AF85 A2FE 80C8 D9A2 Corry's Law: Paper is always strongest at the perforations. -- Ean Kingston E-Mail: ean_AT_hedron_DOT_org URL: http://www.hedron.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
+++ The mail message (file: shower.pif) you sent to [EMAIL PROTECTED] contains a virus (WORM_NETSKY.B)+++ Dear sender, we have detected that you send with every e-mail a virus. Please visit the specified site to clean your PC. http://www.trendmicro.com. If you continue to send unclean e-mails we are forced to take further actions. Mfg ISD-Technical-Support ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virus Found in message Re: Delivery Protection
Dear MSCS Candidate, Thank you for your application to our Computer Professionals Program. In the next few weeks we will be reviewing your application. When this initial review is completed we will inform you of your status for further processing. Once you have submitted your application, we ask that you wait until you hear from us before contacting us again. Inquiries as to application status will not be answered due to the high volume of applications we are receiving. Also, please do not resubmit your application form. Receipt of this email serves as notification to you that we have received your application. We look forward to reviewing your credentials and will notify you of your status as soon we have completed this first step. Best Wishes, Office of Admissions Computer Professionals Program ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
#Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Subject: Hello Scanning part [] Scanning part [Textfile.zip] Attachment validity check: passed. Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
#Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Subject: Document Scanning part [] Scanning part [Important.zip] Attachment validity check: passed. Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
#Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Subject: Hello Scanning part [] Scanning part [Notice.zip] Attachment validity check: passed. Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in the message
#Scanner: MailMonitor for SMTP v1.2.2 Problem description: Email data: MessageID: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Subject: Important Scanning part [] Scanning part [Important.zip] Attachment validity check: passed. Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE Virus identity found: W32/Netsky-AE ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
VIRUS IN YOUR MAIL
V I R U S A L E R T Our viruschecker found the W32/[EMAIL PROTECTED] virus(es) in your email to the following recipient(s): - [EMAIL PROTECTED] Delivery of the email was stopped! Please check your system for viruses, or ask your system administrator to do so. For your reference, here are the headers from your email: - BEGIN HEADERS - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: Thank you for delivery Date: Fri, 3 Dec 2004 08:39:50 +0800 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary==_NextPart_000_0016=_NextPart_000_0016 X-Priority: 3 X-MSMail-Priority: Normal -- END HEADERS -- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
Have detected a virus (HTML_Netsky.P) in mail traffic. Action: deleted. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
Have detected a virus (WORM_NETSKY.P) in mail traffic. Action: deleted. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: email-body) you sent to [EMAIL PROTECTED] contains a virus and has been deleted. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: message.scr) you sent to [EMAIL PROTECTED] contains a virus and has been deleted. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: {Virus?} Private document
[This message last updated January 21, 1998] Dear user: This is an automated message. The NCSA HTTPd is no longer a supported product. The web pages http://hoohoo.ncsa.uiuc.edu are still available. FAQ page: http://httpd.ncsa.uiuc.edu/docs/FAQ.html HyperNews page: http://union.ncsa.uiuc.edu/HyperNews/get/www/ncsa-httpd.html Another source of answers to your questions may be the newsgroup comp.infosystems.www.servers.unix or comp.infosystems.www.providers Alternatively, the Apache Server (originally based on the NCSA HTTPd, and still a free server) is still actively developed. We recommend you take a look at it http://www.apache.org as a possible replacement for the NCSA HTTPd. For information about licensing NCSA HTTPD, contact Jae Allen at [EMAIL PROTECTED] NCSA HTTPd Technical Support ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus protection
Are there any virus packages that are compatiable? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virus protection
On Fri, 15 Oct 2004 15:32:13 -0400 Robert M. Barge [EMAIL PROTECTED] wrote: Are there any virus packages that are compatiable? There is clamav and a few others in the ports. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
MDaemon Warning - virus found: Permanent Delivery Failure
*** WARNING **
This message has been scanned by MDaemon AntiVirus and was found to
contain infected attachment(s). Please review the list below.
AttachmentVirus name Action taken
--
md5075530.eml Exploit.IFrame.FileDownload Removed
**
The attached message had PERMANENT fatal delivery errors!
After one or more unsuccessful delivery attempts the attached message has
been removed from the mail queue on this server. The number and frequency
of delivery attempts are determined by local configuration parameters.
YOUR MESSAGE WAS NOT DELIVERED TO ONE OR MORE RECIPIENTS!
Please don't reply to this automatic message.
Below this line is a copy of the message.
Failed address: [EMAIL PROTECTED]
--- Session Transcript ---
Sun 2004-09-19 13:02:33: Parsing Message
x\pd9000438.msg
Sun 2004-09-19 13:02:33: From: [EMAIL PROTECTED]
Sun 2004-09-19 13:02:33: To: [EMAIL PROTECTED]
Sun 2004-09-19 13:02:33: Subject: Mail Delivery (failure [EMAIL PROTECTED])
Sun 2004-09-19 13:02:33: Message-ID:
Sun 2004-09-19 13:02:33: MX-record resolution of [gardasas.it] in progress (DNS
Server: 212.35.206.22)...
Sun 2004-09-19 13:02:33: P=020 D=gardasas.it TTL=(1440) MX=[relay.cnitalia.it]
{212.35.206.20}
Sun 2004-09-19 13:02:33: Ignoring irrelevant RR, relay.cnitalia.it P=020
Sun 2004-09-19 13:02:33: P=010 D=gardasas.it TTL=(1440) MX=[mail.gardasas.it]
{212.35.214.35}
Sun 2004-09-19 13:02:33: Ignoring irrelevant RR, mail.gardasas.it P=010
Sun 2004-09-19 13:02:33: No MX records available - delivering directly to host
Sun 2004-09-19 13:02:33: Attempting MX: P=000 D=gardasas.it TTL=(60) MX=[gardasas.it]
Sun 2004-09-19 13:02:33: Attempting SMTP connection to [gardasas.it : 25]
Sun 2004-09-19 13:02:33: A-record resolution of [gardasas.it] in progress (DNS
Server: 212.35.206.22)...
Sun 2004-09-19 13:02:33: Name server has no records of the requested type for that
domain
Sun 2004-09-19 13:02:33: This message is 5 days old; it has 0 days left to get
delivered
--- End Transcript ---
: Message contains [1] file attachments
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
MDaemon Warning - virus found: Transient Delivery Failure
*** WARNING **
This message has been scanned by MDaemon AntiVirus and was found to
contain infected attachment(s). Please review the list below.
AttachmentVirus name Action taken
--
md9000304.eml Exploit.IFrame.FileDownload Removed
**
The attached message had transient non-fatal delivery errors
THIS IS A WARNING MESSAGE ONLY - YOU DO NOT NEED TO RESEND YOUR MESSAGE!
This server is configured to automatically retry delivery at configured
intervals. Subsequent attempts to deliver this message are pending.
Failed address: [EMAIL PROTECTED]
--- Session Transcript ---
Tue 2004-09-14 17:13:56: Parsing Message
xxx\pd5003401.msg
Tue 2004-09-14 17:13:56: From: [EMAIL PROTECTED]
Tue 2004-09-14 17:13:56: To: [EMAIL PROTECTED]
Tue 2004-09-14 17:13:56: Subject: Mail Delivery (failure [EMAIL PROTECTED])
Tue 2004-09-14 17:13:56: Message-ID:
Tue 2004-09-14 17:13:56: MX-record resolution of [gardasas.it] in progress (DNS
Server: 62.94.0.1)...
Tue 2004-09-14 17:13:56: P=020 D=gardasas.it TTL=(1439) MX=[relay.cnitalia.it]
{212.35.206.20}
Tue 2004-09-14 17:13:56: Ignoring irrelevant RR, relay.cnitalia.it P=020
Tue 2004-09-14 17:13:56: P=010 D=gardasas.it TTL=(1439) MX=[mail.gardasas.it]
{212.35.214.35}
Tue 2004-09-14 17:13:56: Ignoring irrelevant RR, mail.gardasas.it P=010
Tue 2004-09-14 17:13:56: No MX records available - delivering directly to host
Tue 2004-09-14 17:13:56: Attempting MX: P=000 D=gardasas.it TTL=(60) MX=[gardasas.it]
Tue 2004-09-14 17:13:56: Attempting SMTP connection to [gardasas.it : 25]
Tue 2004-09-14 17:13:56: A-record resolution of [gardasas.it] in progress (DNS
Server: 62.94.0.1)...
Tue 2004-09-14 17:13:56: Name server has no records of the requested type for that
domain
Tue 2004-09-14 17:13:56: This message is 340 minutes old; it has 0 minutes left in
this queue
Tue 2004-09-14 17:13:56: Primary queue lifetime exceeded; message placed in retry
queue
--- End Transcript ---
: Message contains [1] file attachments
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: your_document.pif) you sent to [EMAIL PROTECTED] contains a virus. (on wmdrsv02) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in sent message something for you
Attention: [EMAIL PROTECTED] A Virus was found in an Email message you sent. This Email scanner intercepted it and stopped the entire message reaching it's destination. The Virus was reported to be: W32/[EMAIL PROTECTED] Please update your virus scanner or contact your I.T support personnel as soon as possible as you have a virus on your system. Your message was sent with the following envelope: MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] ... and with the following headers: From:[EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: something for you Date:Tue, 17 Aug 2004 09:48:54 +0100 The original message is kept in: mail.fam.ulusiada.pt:/var/spool/qmailscan/quarantine where the Mail System Anti-Virus Administrator can further diagnose it. The Email scanner reported the following when it scanned that message: --- ---fprot results --- Virus scanning report - 17. August 2004 9:44 F-PROT 3.11b SIGN.DEF created 17. August 2004 SIGN2.DEF created 17. August 2004 MACRO.DEF created 16. August 2004 Search: /var/spool/qmailscan/mail.fam.ulusiada.pt109273228040425817 /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109273228040425817 Action: Report only Files: Dumb scan of all files Switches: /ARCHIVE /AI /var/spool/qmailscan/mail.fam.ulusiada.pt109273228040425817/note.com Infection: W32/[EMAIL PROTECTED] /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109273228040425817-note.com Infection: W32/[EMAIL PROTECTED] Results of virus scanning: Files: 3 MBRs: 0 Boot sectors: 0 Objects scanned: 4 Infected: 2 Suspicious: 0 Disinfected: 0 Deleted: 0 Renamed: 0 Time: 0:00 --- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in sent message hello
Attention: [EMAIL PROTECTED] A Virus was found in an Email message you sent. This Email scanner intercepted it and stopped the entire message reaching it's destination. The Virus was reported to be: W32/[EMAIL PROTECTED] Please update your virus scanner or contact your I.T support personnel as soon as possible as you have a virus on your system. Your message was sent with the following envelope: MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] ... and with the following headers: From:[EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: hello Date:Wed, 4 Aug 2004 10:43:42 +0100 The original message is kept in: mail.fam.ulusiada.pt:/var/spool/qmailscan/quarantine where the Mail System Anti-Virus Administrator can further diagnose it. The Email scanner reported the following when it scanned that message: --- ---fprot results --- Virus scanning report - 4. August 2004 10:39 F-PROT 3.11b SIGN.DEF created 31. July 2004 SIGN2.DEF created 31. July 2004 MACRO.DEF created 2. August 2004 Search: /var/spool/qmailscan/mail.fam.ulusiada.pt109161237240421021 /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109161237240421021 Action: Report only Files: Dumb scan of all files Switches: /ARCHIVE /AI /var/spool/qmailscan/mail.fam.ulusiada.pt109161237240421021/mails.htm.exe Infection: W32/[EMAIL PROTECTED] /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109161237240421021-mails.zip-mails.htm.exe Infection: W32/[EMAIL PROTECTED] Results of virus scanning: Files: 3 MBRs: 0 Boot sectors: 0 Objects scanned: 5 Infected: 2 Suspicious: 0 Disinfected: 0 Deleted: 0 Renamed: 0 Time: 0:00 --- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus found in sent message hello
Attention: [EMAIL PROTECTED] A Virus was found in an Email message you sent. This Email scanner intercepted it and stopped the entire message reaching it's destination. The Virus was reported to be: W32/[EMAIL PROTECTED] Please update your virus scanner or contact your I.T support personnel as soon as possible as you have a virus on your system. Your message was sent with the following envelope: MAIL FROM: [EMAIL PROTECTED] RCPT TO: [EMAIL PROTECTED] ... and with the following headers: From:[EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: hello Date:Tue, 3 Aug 2004 15:36:11 +0100 The original message is kept in: mail.fam.ulusiada.pt:/var/spool/qmailscan/quarantine where the Mail System Anti-Virus Administrator can further diagnose it. The Email scanner reported the following when it scanned that message: --- ---fprot results --- Virus scanning report - 3. August 2004 15:32 F-PROT 3.11b SIGN.DEF created 31. July 2004 SIGN2.DEF created 31. July 2004 MACRO.DEF created 2. August 2004 Search: /var/spool/qmailscan/mail.fam.ulusiada.pt109154352140421398 /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109154352140421398 Action: Report only Files: Dumb scan of all files Switches: /ARCHIVE /AI /var/spool/qmailscan/mail.fam.ulusiada.pt109154352140421398/talk.htm.exe Infection: W32/[EMAIL PROTECTED] /var/spool/qmailscan/working/new/mail.fam.ulusiada.pt109154352140421398-talk.zip-talk.htm.exe Infection: W32/[EMAIL PROTECTED] Results of virus scanning: Files: 3 MBRs: 0 Boot sectors: 0 Objects scanned: 5 Infected: 2 Suspicious: 0 Disinfected: 0 Deleted: 0 Renamed: 0 Time: 0:00 --- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
On Fri, Jul 30, 2004 at 06:22:00PM -0600, Warren Block wrote: On Fri, 30 Jul 2004, Tim Schutt wrote: On Jul 30, 2004, at 4:09 PM, Bill Moran wrote: If you're going to send notification, there is only one _proper_ way to do it: analyze the Received: headers and find out where the virus _really_ originated, then contact the abuse@ address for that domain with the message. I completely understand where you are coming from, and I am only intending on notifying the intended recipient of the email, not the sender for the very reason that you note. If it was just me, I would can the message and be done with it. However, I am in the midst of marketing this service to some highly security conscious people so I would like the reinforcement of the notifications for their piece of mind and a little customer-stroking reminding them how great the service is. :-) [Format recovered--please don't top-post. It makes responding to your messages difficult and time-consuming, to the point that many people won't bother.] Virus detected messages are generally abusive. Here are some problems I've experienced on the receiving end of antivirus notification messages: * Sent to the forged From address. We'll skip the issue of a virus checker that trusts any content in a virus-generated message; what about long CC: and BCC: lists? * Sent to the intended victim--Hey, you almost got away without being harassed, but we wanted to brag about our antivirus system. * Some include this message guaranteed virus-free text. It's like the sender is saying please sue me. * Sent outside the detecting system's domains, spreading the damage. If you must send notifications, send them only to those systems you control, and where you are responsible to your users. * Antivirus software forges [EMAIL PROTECTED]'sdomain into the From: line. Senders of these messages get a 550 reject for all further mail. * Some notifications include the virus. Yes, there are actual antivirus programs out there that are dumb enough to do this. Bearing that in mind, here's a suggestion for clamav flags: clamav_milter_flags=--quiet --local --outgoing --max-children=50 --dont-log-clean --noxheader --outgoing Amen brother. I agree basically with all of that. I'd like to bring out a point implicit in what Warren says, which is that the best -- if not the only -- way to notify someone in the sending chain that they are sending you a virus infected e-mail is to reject the message with a 550 or 554 code at the SMTP DATA stage. This will generate at least a log message on the sending server, and hopefully will alert the admins of that machine that they need to take action. Even so, if your e-mails are commonly relayed through some MXes that don't run AV scans, doing that will result in sending bounce messages with all the implications of those going astray due to forged headers. In that sense, the only 'safe' thing to do is to accept the message and immediately route it to /dev/null. Except that runs counter to the SMTP standards. It's a toss-up: but neither way is completely ideal. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgptROaKtUlnp.pgp Description: PGP signature
amavisd/clamav Virus Recipient email notification template woes
Hi list, I've got postfix/amavisd/clamav configured on my mailserver, but I am having trouble getting the notification emails to format properly. I pulled the standard template out of the amavisd tarball right off their site, but the notification emails continuously come through blank, and all the usual headers are stripped out of it. I have postfix running under it's own user, and amavisd/clamav running under a secondary user/group exclusive to themselves (the same user for both processes). I've verified that the template file references in amavisd.conf are pointing to the correct location, and the files themselves are readable from the user that amavisd clamav run under. Am I missing anything here, or where else should I be looking for errors that will tell me why this isn't working? Thanks in advance!! Tim [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
On Fri, 30 Jul 2004 13:42:00 -0400, Tim Schutt [EMAIL PROTECTED] wrote: I've got postfix/amavisd/clamav configured on my mailserver, but I am having trouble getting the notification emails to format properly. Virus and spam notifications are a bad idea. Both types of email forge the sender address, so notifications to the sender wind up going to a third party that can't do anything about the problem. Notices to the intended recipient are simply a waste of bandwidth. I know there are those who feel you should never discard mail, but in this case, I'm fine with it. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
Logan Ashby [EMAIL PROTECTED] wrote: On Fri, 30 Jul 2004 13:42:00 -0400, Tim Schutt [EMAIL PROTECTED] wrote: I've got postfix/amavisd/clamav configured on my mailserver, but I am having trouble getting the notification emails to format properly. Virus and spam notifications are a bad idea. Both types of email forge the sender address, so notifications to the sender wind up going to a third party that can't do anything about the problem. Notices to the intended recipient are simply a waste of bandwidth. I know there are those who feel you should never discard mail, but in this case, I'm fine with it. Agreed. I actually have people on my blocklist because their virus protection continues to send me alerts that I may have a virus on my system If you're going to send notification, there is only one _proper_ way to do it: analyze the Received: headers and find out where the virus _really_ originated, then contact the abuse@ address for that domain with the message. Despite how easy this is to do, it doesn't seem like a lot of AV packages bother with it ... -- Bill Moran Potential Technologies http://www.potentialtech.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
I completely understand where you are coming from, and I am only intending on notifying the intended recipient of the email, not the sender for the very reason that you note. If it was just me, I would can the message and be done with it. However, I am in the midst of marketing this service to some highly security conscious people so I would like the reinforcement of the notifications for their piece of mind and a little customer-stroking reminding them how great the service is. :-) Lame reason, maybe... but there is reasonable logic behind me wanting to do this. Tim. On Jul 30, 2004, at 4:09 PM, Bill Moran wrote: If you're going to send notification, there is only one _proper_ way to do it: analyze the Received: headers and find out where the virus _really_ originated, then contact the abuse@ address for that domain with the message. Despite how easy this is to do, it doesn't seem like a lot of AV packages bother with it ... -- Bill Moran ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
On Fri, 30 Jul 2004 16:43:33 -0400, Tim Schutt [EMAIL PROTECTED] wrote: Lame reason, maybe... but there is reasonable logic behind me wanting to do this. That's understandable, but it may well backfire on you. I would be just as irritated at receiving hundreds, possibly thousands of notices that a virus wasn't delivered as I would at actually getting them. A once a day digest of stats on how many were blocked would work, but I don't know of any OSS packages that can do that. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amavisd/clamav Virus Recipient email notification template woes
On Fri, 30 Jul 2004, Tim Schutt wrote: On Jul 30, 2004, at 4:09 PM, Bill Moran wrote: If you're going to send notification, there is only one _proper_ way to do it: analyze the Received: headers and find out where the virus _really_ originated, then contact the abuse@ address for that domain with the message. I completely understand where you are coming from, and I am only intending on notifying the intended recipient of the email, not the sender for the very reason that you note. If it was just me, I would can the message and be done with it. However, I am in the midst of marketing this service to some highly security conscious people so I would like the reinforcement of the notifications for their piece of mind and a little customer-stroking reminding them how great the service is. :-) [Format recovered--please don't top-post. It makes responding to your messages difficult and time-consuming, to the point that many people won't bother.] Virus detected messages are generally abusive. Here are some problems I've experienced on the receiving end of antivirus notification messages: * Sent to the forged From address. We'll skip the issue of a virus checker that trusts any content in a virus-generated message; what about long CC: and BCC: lists? * Sent to the intended victim--Hey, you almost got away without being harassed, but we wanted to brag about our antivirus system. * Some include this message guaranteed virus-free text. It's like the sender is saying please sue me. * Sent outside the detecting system's domains, spreading the damage. If you must send notifications, send them only to those systems you control, and where you are responsible to your users. * Antivirus software forges [EMAIL PROTECTED]'sdomain into the From: line. Senders of these messages get a 550 reject for all further mail. * Some notifications include the virus. Yes, there are actual antivirus programs out there that are dumb enough to do this. Bearing that in mind, here's a suggestion for clamav flags: clamav_milter_flags=--quiet --local --outgoing --max-children=50 --dont-log-clean --noxheader --outgoing -Warren Block * Rapid City, South Dakota USA ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
A Virus has been detected in your Email
The following Message you sent contained a Virus and will NOT be delivered To: [EMAIL PROTECTED] Subject: Date: Mon, 26 Jul 2004 18:52:18 +0200 Details of the Virus detected are as follows Scenarios/Incoming/Incoming: Sophos AV Interface for Mimesweeper: Threat: 'W32/MyDoom-O' detected by 'Sophos AV Interface for MIMEsweeper'. Scenarios/Incoming/Incoming: Blocked File Extensions: A filename matching the file mask was detected: 'cgey.com'. Scenarios/Incoming/Incoming: Block Executables: 'ItemLength.GE.0'. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: message.scr) you sent to [EMAIL PROTECTED] contains a virus (WORM_NETSKY.P). The message has been deleted, so you may want to resend it without the virus payload. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sophos anti virus and mailmonitor on freebsd
I wonder who should ever need mailmonitor in FreeBSD Here we are running Sophos on several FBSD machines and we use amavis to make it scan and filter our mails. That works perfectly and so I see no need for mailmonitor at all. Greetz, Frank Mailmonitor will work on BSD. I have it running you have to build a symbolic link to the libsavi.so.3 library in /compat/linux/lib/ . Like this ln -s /usr/local/sav/lib/libsavi.so.3 /compat/linux/lib/libsavi.so.2 . Keep in mind that this is in linux compat mode so once it starts up all your mmsmtp stuff will be located in /compat/linux/var/spool/mmsmtp I know Sophos states it won't work but thats just who your talking too, If you had got me on the phone I would have had you up and running. Oh by the way if you still have the same problem after applying the symbolic link try running the un-installer that comes with mmsmtp . then run the install script to re-install. Delete the symbolic link and then linnk the library which comes with the sav-install script. in my case I have my latest sav-install script located in /tmp . I link the larger of the two libraries and it works fine. ssigc# ls -la | grep lib -r-xr-xr-x 1 root wheel 957904 Jul 7 2003 libsavi.so.3.2.05.035 -r-xr-xr-x 1 root wheel 1384632 Feb 9 05:04 libsavi.so.3.2.07.054 Link this one as libsavi.so.2 ssigc# pwd /tmp/sav-install ssigc# ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sophos anti virus and mailmonitor on freebsd
- Original Message - From: Frank Mueller [EMAIL PROTECTED] To: Thomas Farrell [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, May 24, 2004 1:12 AM Subject: Re: sophos anti virus and mailmonitor on freebsd I wonder who should ever need mailmonitor in FreeBSD Here we are running Sophos on several FBSD machines and we use amavis to make it scan and filter our mails. That works perfectly and so I see no need for mailmonitor at all. Greetz, Frank While it is true that Sophos sweep will run under Amavis, and that's all you need, if you're processing mail with that system, then it's considered a mail gateway to them legally and you have to purchase the mail gateway version to legally use it. Trust me on this, I went round and around with this problem because when I ordered Sophos for FreeBSD a couple of years back, I specifically asked about the ability to use it on our mail server and everything was good. This was before they offered their mail gateway system. Earlier this year, our license was about to expire so I went to renew and was shocked to hear that I was now in violation of my license. I informed them that it was running on my smtp server, and was then informed that their licensing had changed and now, I needed to purchase the product for the mail gateway. All I needed was to be able to run sweep, but we were going to be forced to buy the Enterprise edition for mail gateways in order to continue using it. A Network Server != SMTP Server to them. I see no reason to purchase the entire mail gateway package as it's not necessary, however to be legal with them, it is. Hence the reason that we switched to another av package and pulled sweep from our server. -- Micheal Patterson TSG Network Administration 405-917-0600 Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sophos anti virus and mailmonitor on freebsd
Mailmonitor will work on BSD. I have it running you have to build a symbolic link to the libsavi.so.3 library in /compat/linux/lib/ . Like this ln -s /usr/local/sav/lib/libsavi.so.3 /compat/linux/lib/libsavi.so.2 . Keep in mind that this is in linux compat mode so once it starts up all your mmsmtp stuff will be located in /compat/linux/var/spool/mmsmtp I know Sophos states it won't work but thats just who your talking too, If you had got me on the phone I would have had you up and running. Oh by the way if you still have the same problem after applying the symbolic link try running the un-installer that comes with mmsmtp . then run the install script to re-install. Delete the symbolic link and then linnk the library which comes with the sav-install script. in my case I have my latest sav-install script located in /tmp . I link the larger of the two libraries and it works fine. ssigc# ls -la | grep lib -r-xr-xr-x 1 root wheel 957904 Jul 7 2003 libsavi.so.3.2.05.035 -r-xr-xr-x 1 root wheel 1384632 Feb 9 05:04 libsavi.so.3.2.07.054 Link this one as libsavi.so.2 ssigc# pwd /tmp/sav-install ssigc# ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Possible Virus
On Sunday, May 16, 2004 5:04:50 AM arden [EMAIL PROTECTED] wrote: |Date: Sat, 15 May 2004 20:01:33 +0100 |From: arden [EMAIL PROTECTED] |Subject: possible virus |To: York Linux Users Group [EMAIL PROTECTED] |Cc: [EMAIL PROTECTED] [EMAIL PROTECTED] |Message-ID: [EMAIL PROTECTED] |Content-Type: text/plain | |hi all | |Ive just received an e-mail claiming to be from Microsoft telling me to |run the attached patch | |which must be bogus since I've never registered with m$ and don't |connect to the net with any Microsoft operating systems | |May-be one for sysadmin people to look for | |Arden ** Reply Separator ** Sunday, May 16, 2004 8:17:38 AM It is totally false. Microsoft never sends out emails with patches for it's software. In addition, they usually include a PGP key. You could try running the email through SPAM COP, but it is probably not worth the effort. BTW, are you running any AV software? If so, and assuming it is current, it should have detected any attached virus or Trojan horse paraphernalia. -- Gerard Seibert [EMAIL PROTECTED] You cannot do a kindness too soon, for you never know how soon it will be too late. - Ralph Waldo Emerson ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: possible virus
On Sat, 15 May 2004 20:01:33 +0100, arden wrote: Ive just received an e-mail claiming to be from Microsoft telling me torun the attached patch It's a known worm. Look at the headers and you can clearly see that it's not from Microsoft. This is why I have mutt and Evolution configured to always show all headers. If you're bored, try running it under wine, though I wouldn't do that on a production system. =) -- I abhor a system designed for the user, if that word is a coded pejorative meaning stupid and unsophisticated. -- Ken Thompson - Unix is user friendly. However, it isn't idiot friendly. - Please CC me in all replies, even if I'm on the relevant list(s). pgpwvwwzIMoFw.pgp Description: PGP signature
possible virus
hi all Ive just received an e-mail claiming to be from Microsoft telling me to run the attached patch which must be bogus since I've never registered with m$ and don't connect to the net with any Microsoft operating systems May-be one for sysadmin people to look for Arden ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Warning: A possible virus has been detected in one of your messages.
A virus or an infected file has been detected in a message: From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Protected Mail System Messages containing infected attachments will no longer be forwarded. If you wish to send emails with attachment, we strongly recommend that you enclose your attachment in formats like .ZIP. This is the size of the email in question: -rw---1 root mail41543 Apr 23 10:08 msg.ktcI This is what our filter said about the issue: - X-Procmail-AV: Probably a NetSky.P/Q/C or similar virus detected. - These filenames were found in the message: pgp_sess01.zip Content-Disposition: attachment; If you want this mail anyway, please click here: mailto:[EMAIL PROTECTED]/msg.ktcI Should that fail, click here in stead: mailto:[EMAIL PROTECTED] __ RECIPIENT: __ You are our customer, therefore we did this effort to protect you from viruses. If you do not want the antivirus scanning for your emails, please click here: mailto:[EMAIL PROTECTED] otherwise no action is required on your part. A copy of this message has been delivered to the sender. __ SENDER: __ Please update your virus detection software and clean your system before attempting to resend this message. If you are one of our customers, we suggest that you use our WebMail system at: http://YOURDOMAIN/webmail ** Regards, AntiVirus System [EMAIL PROTECTED] [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Update Your Virus Program Scan Your Computer - You have sent us message which contains The W32.Netsky@mm Virus
::: [EMAIL PROTECTED] Virus Alert - You have sent us message which contains The [EMAIL PROTECTED] Virus - Update Your Virus Program Scan Your Computer See: http://vil.nai.com/vil/content/v_101145.htm See: http://vil.nai.com/vil/stinger/ ::: Good Day, If you received this e-mail it means a message was received by our servers, indicating it was sent from your e-mail address, by the Netsky Virus. If you did send us an e-mail with a virus free attachment, you need to resend your message to [EMAIL PROTECTED] in order for it to be properly routed. You may need to review the information below in order to resolve the problem being created on your e-mail account by the [EMAIL PROTECTED] Virus. Best Regards, InterMedia The Internet Communications Network of Haiti http://www.intermediahaiti.com [EMAIL PROTECTED] ::: The [EMAIL PROTECTED] Virus and what you can do about it. In short: 1) Take the actions recommended here 2) Forward this to everyone you know ::: The [EMAIL PROTECTED] Virus http://vil.nai.com/vil/content/v_101145.htm has become so highly prevalent on computers that, at the very least, it is no doubt taking up a great deal of your time and energy to delete every day. If your computer is infected you are creating an incredible amount of trouble for your customary correspondents. If you are receiving several of these virus messages a day it means people who have your e-mail address in their address book, or who have received e-mail from you on their computers, have the virus. The only way to hopefully eliminate this virus is to advise all the people in your e-mail address book of its characteristics and the measures which need to be taken to remove it from their computers. The more people you advise, and the more people they advise, the better off we will all be from this nuisance, and it will eventually be brought under control. If not, you potentially face months of deleting tens or even hundreds of messages every day. There are simple removal tools available for free at: http://vil.nai.com/vil/stinger/ http://securityresponse.symantec.com/avcenter/FxNetsky.exe If you do not have an anti-virus program, or a current subscription allowing you to update your virus definitions, we recommend you repeat this debugging every week. Please take a moment to review what is below in order to verify your own computer, and we recommend you forward this message to everyone you know, because if you did not send us a message, the probability is high, someone who has your address on their computer is infected. Best Regards, InterMedia ::: [EMAIL PROTECTED] Removal Tool ::: Symantec Security Response has developed a removal tool to clean infections of the following Netsky variants. - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] What the tool does? The [EMAIL PROTECTED] Removal Tool does the following: - Terminates the [EMAIL PROTECTED] viral processes - Deletes the [EMAIL PROTECTED] files - Deletes the registry values that the worm added Obtaining and running the tool --- Download the FxNetsky.exe file from: http://securityresponse.symantec.com/avcenter/FxNetsky.exe. --- Save the file to a convenient location on your computer. --- Close all the running programs before running the tool. --- If you are on a network or if you have a full-time connection to the Internet, disconnect the computer from the network and the Internet. Caution: If you are running Windows Me or XP, First *** Disable System Restore***. If you are running Windows Me/XP, we strongly recommend that you do not skip this step. --- Double-click the FxNetsky.exe file to start the removal tool. --- Click Start to begin the process, and then allow the tool to run. --- Restart the computer. --- Run the removal tool again to ensure that the system is clean. --- Then re-enable System Restore. Note: The removal procedure may not be successful if Windows Me/XP System Restore is not disabled as previously directed, because Windows prevents outside programs from modifying System Restore. When the tool has finished running, you will see a message indicating whether [EMAIL PROTECTED] infected the computer. In the case of a removal of the worm, the program displays the following results: --- Total number of scanned files --- Number of deleted files --- Number of repaired files --- Number of terminated viral processes --- Number of fixed registry entries
Re: Update Your Virus Program Scan Your Computer - You have sent us message which contains The W32.Netsky@mm Virus
sorry, not me but a friend of mine had the virus and probably my name in his address book. he has rectified the situation! On Wed, 21 Apr 2004, InterMedia wrote: ::: [EMAIL PROTECTED] Virus Alert - You have sent us message which contains The [EMAIL PROTECTED] Virus - Update Your Virus Program Scan Your Computer See: http://vil.nai.com/vil/content/v_101145.htm See: http://vil.nai.com/vil/stinger/ ::: Good Day, If you received this e-mail it means a message was received by our servers, indicating it was sent from your e-mail address, by the Netsky Virus. If you did send us an e-mail with a virus free attachment, you need to resend your message to [EMAIL PROTECTED] in order for it to be properly routed. You may need to review the information below in order to resolve the problem being created on your e-mail account by the [EMAIL PROTECTED] Virus. Best Regards, InterMedia The Internet Communications Network of Haiti http://www.intermediahaiti.com [EMAIL PROTECTED] ::: The [EMAIL PROTECTED] Virus and what you can do about it. In short: 1) Take the actions recommended here 2) Forward this to everyone you know ::: The [EMAIL PROTECTED] Virus http://vil.nai.com/vil/content/v_101145.htm has become so highly prevalent on computers that, at the very least, it is no doubt taking up a great deal of your time and energy to delete every day. If your computer is infected you are creating an incredible amount of trouble for your customary correspondents. If you are receiving several of these virus messages a day it means people who have your e-mail address in their address book, or who have received e-mail from you on their computers, have the virus. The only way to hopefully eliminate this virus is to advise all the people in your e-mail address book of its characteristics and the measures which need to be taken to remove it from their computers. The more people you advise, and the more people they advise, the better off we will all be from this nuisance, and it will eventually be brought under control. If not, you potentially face months of deleting tens or even hundreds of messages every day. There are simple removal tools available for free at: http://vil.nai.com/vil/stinger/ http://securityresponse.symantec.com/avcenter/FxNetsky.exe If you do not have an anti-virus program, or a current subscription allowing you to update your virus definitions, we recommend you repeat this debugging every week. Please take a moment to review what is below in order to verify your own computer, and we recommend you forward this message to everyone you know, because if you did not send us a message, the probability is high, someone who has your address on their computer is infected. Best Regards, InterMedia ::: [EMAIL PROTECTED] Removal Tool ::: Symantec Security Response has developed a removal tool to clean infections of the following Netsky variants. - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] - [EMAIL PROTECTED] What the tool does? The [EMAIL PROTECTED] Removal Tool does the following: - Terminates the [EMAIL PROTECTED] viral processes - Deletes the [EMAIL PROTECTED] files - Deletes the registry values that the worm added Obtaining and running the tool --- Download the FxNetsky.exe file from: http://securityresponse.symantec.com/avcenter/FxNetsky.exe. --- Save the file to a convenient location on your computer. --- Close all the running programs before running the tool. --- If you are on a network or if you have a full-time connection to the Internet, disconnect the computer from the network and the Internet. Caution: If you are running Windows Me or XP, First *** Disable System Restore***. If you are running Windows Me/XP, we strongly recommend that you do not skip this step. --- Double-click the FxNetsky.exe file to start the removal tool. --- Click Start to begin the process, and then allow the tool to run. --- Restart the computer. --- Run the removal tool again to ensure that the system is clean. --- Then re-enable System Restore. Note: The removal procedure may not be successful if Windows Me/XP System Restore is not disabled as previously directed, because Windows prevents outside programs from modifying System Restore. When the tool has finished running, you will see a message indicating whether [EMAIL PROTECTED] infected the computer. In the case of a removal of the worm
virus found in your message Re: Mail Authentification
A malicious mobile code (virus) has been detected in your mail. This could mean that your computer is infected. The mail you sent has not been delivered. This event has been logged and reported to our administrators. Contact your local staff or service desk for info about cleaning your system. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: your_file.pif) you sent to [EMAIL PROTECTED] contains a virus. (on mail.sahara.co.in) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: your_bill.pif) you sent to [EMAIL PROTECTED] contains a virus. (on mail.sahara.co.in) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti-virus
On Mar 29, 2004, at 9:52 PM, Earl Larsen wrote: I was wondering what is a good, free ;) anti virus program for FreeBSD. Clamav has worked very well for me... ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti-virus
On Mon, Mar 29, 2004 at 08:52:23PM -0600, Earl Larsen wrote: I was wondering what is a good, free ;) anti virus program for FreeBSD. Depending what you mean by free... maybe try security/f-prot. It's free for non-commercial use. -lewiz. -- I was so much older then, I'm younger than that now. --Bob Dylan, 1964. -| msn:[EMAIL PROTECTED] | jabber:[EMAIL PROTECTED] | url:www.lewiz.org |- pgp0.pgp Description: PGP signature
Re: Anti-virus
On Tuesday 30 March 2004 06:58 am, Lewis Thompson wrote: On Mon, Mar 29, 2004 at 08:52:23PM -0600, Earl Larsen wrote: I was wondering what is a good, free ;) anti virus program for FreeBSD. Depending what you mean by free... maybe try security/f-prot. It's free for non-commercial use. -lewiz. It will be used for non-commercial use. I am a student with limited income. And any good free (comparable to boughten) anti virus software would be nice. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Trend Micro Medium Risk Virus Alert - WORM_NETSKY.Q
Dear Trend Micro customer, As of March 29, 2004 12:29 AM PST, TrendLabs has declared a Medium Risk Virus Alert to control the spread of WORM_NETSKY.Q. TrendLabs has received several infection reports indicating that this malware is spreading in Japan and China. This new NETSKY variant propagates via email and network shares. It exploits a known vulnerability (MS01-020) that affects Internet Explorer and allows the automatic execution of attachments when an email is read or previewed in Microsoft Outlook and Outlook Express. More information on the exploit can be read at: http://www.microsoft.com/technet/security/bulletin/MS01-020.mspx TrendLabs will be releasing the following EPS deliverables: TMCM Outbreak Prevention Policy 102 (released March 29, 2004 12:30 AM PST) Official Pattern Release 842 Damage Cleanup Template 302 For more information on WORM_NETSKY.Q, you can visit our Web site at: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_NETSKY.Q You can modify subscription settings for Trend Micro newsletters at: http://www.trendmicro.com/subscriptions/default.asp __ This message was sent by Trend Micro's Newsletters Editor using Responsys Interact (TM). If you prefer not to receive future e-mail from Trend Micro's Newsletters Editor: http://trendnewsletter.rsc03.net/servlet/website/PersonalizedForm?mgLEwkLMLkLgJL9LgmLk.40hktELtHpsEMkLLIlK-jNLlmphglFMkLLIlKDhknEhEu.260zd5_x_zNIl To view our permission marketing policy: http://www.rsvp0.net ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail Delivery failure (dns-esg@sita.int) ScanMail has detected a virus!
Advisory Please be advised that sita.int has migrated to sita.aero. Your email to the addressed individual in SITA has not been delivered Please resend your mail using the correct e-mail address: @sita.aero Note, you will not receive a further reminder to any emails sent to sita.int today, and subsequent emails will not be delivered. Therefore we strongly advise that you: Switch your bookmarks and any links that you may have to our new address TODAY. www.sita.aero Check your e-mail address book for all [EMAIL PROTECTED] and change to [EMAIL PROTECTED] TODAY .aero The domain of aviation reserved exclusively for the aviation community. To find out more about .aero , visit www.information.aero ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Anti-virus
I was wondering what is a good, free ;) anti virus program for FreeBSD. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti-virus
I would recommend Clam Antivirus. http://clamav.sourceforge.net - Jamie On Mon, 29 Mar 2004, Earl Larsen wrote: I was wondering what is a good, free ;) anti virus program for FreeBSD. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Greetings from Minneapolis, MN, United States A friend is someone who lets you have total freedom to be yourself. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virus Alert
The mail message (file: readme.zip) you sent to [EMAIL PROTECTED] contains a virus. (on iscan.phys.s.u-tokyo.ac.jp) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Trend Micro Medium Risk Virus Alert - WORM_NETSKY.P
Dear Trend Micro customer: As of March 22, 2004 7:05 AM PST, TrendLabs has declared a Yellow Alert to control the spread of WORM_NETSKY.P. TrendLabs has received numerous infection reports of this malware spreading in the US and Europe. This new NETSKY variant propagates via email using its own Simple Mail Transfer Protocol (SMTP) engine. The email that it sends out has varying subjects, message bodies, and attachment file names. It gathers email addresses from files with certain extension names. It also has the ability to propagate via network shares by dropping copies of itself to shared folders of the affected system. It exploits a known vulnerability in the Internet Explorer involving the incorrect MIME header vulnerability (MS01-020) to execute the malware when the email is read. More information on this vulnerability is available at: http://www.microsoft.com/technet/security/bulletin/MS01-020.mspx TrendLabs has released the following EPS deliverables: TMCM Outbreak Prevention Policy 99 (ATA: 7:34 AM PST) Official Pattern Release 832 (ATA: 7:22 AM PST) Damage Cleanup Template 296 (ETA 1 hour 45 minutes) __ This message was sent by Trend Micro's Newsletters Editor using Responsys Interact (TM). If you prefer not to receive future e-mail from Trend Micro's Newsletters Editor: http://trendnewsletter.rsc03.net/servlet/website/PersonalizedForm?mgLEwkLMLkLgJL9LgmLk.40hktELtHpsEMkLLIlK-jNLlmphglFMkLLIlKDhknEhE.3dLgLkpJ8sHlm_zNIlJkpILkl To view our permission marketing policy: http://www.rsvp0.net ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti Virus Software
On Thu, Mar 18, 2004 at 01:11:59PM +0800, [EMAIL PROTECTED] wrote: also i was wondering too if there are any recommendations for a good AV/spam combo for email running qmail courier/imap? Have a look at this article: http://logicsquad.net/freebsd/qmail-scanner-how-to.html It was getting old (describing some installation procedures for applications which, at the time, had no ports) and I updated it just a few days ago. I removed the parts describing manual installation and replaced them with pointers to the various ports. I have not actually tested the current version of the article from top to bottom, so I would be interested to hear about bugs if you try it. -- Paul. mailto:[EMAIL PROTECTED] pgp0.pgp Description: PGP signature
Anti Virus Software
I'm trying to set up a small web server with freebsd and all the Anti Virus Software I've find for Linus based want about $400 is there anything I acn do cheeper? Thanks Dennis ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti Virus Software
I'm trying to set up a small web server with freebsd and all the Anti Virus Software I've find for Linus based want about $400 is there anything I acn do cheeper? Thanks Dennis Try looking at ports. there are a bunch of free AV software there for free. [I'm thinking of clamav and amavisd-new, downloading that now as i type] also i was wondering too if there are any recommendations for a good AV/spam combo for email running qmail courier/imap? Anyone have any experiences that I could try emulating? Yours, Rommel ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anti Virus Software
Hi Rommel, --On Thursday, March 18, 2004 01:11:59 PM +0800 [EMAIL PROTECTED] wrote: Try looking at ports. there are a bunch of free AV software there for free. [I'm thinking of clamav and amavisd-new, downloading that now as i type] Also, f-prot has a free version for FreeBSD (personal use). I love it. also i was wondering too if there are any recommendations for a good AV/spam combo for email running qmail courier/imap? Anyone have any experiences that I could try emulating? Well, I use qmail-scanner on one of my setups, along with f-prot. qmail-scanner also plugs in spamassassin at the same time, so it takes care of both. F-prot has a wonderful script which I run as a cron job, and every night it downloads and sets up the new virus databases.. requires no maintenance on my part. Personally, I don't run spamassassin, as I block spam at the SMTP level through qmail rblsmtp blacklists that I built, and other layered measures at the .qmail file level.. -- Gary ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
VIRUS IN YOUR MAIL
V I R U S A L E R T Il controllo antivirus ha rilevato il virus: nella mail inviata ai seguenti destinatari: - [EMAIL PROTECTED] La consegna del messaggio e' stata bloccata ! Seguono in coda gli header della mail come riferimento. V I R U S A L E R T Our viruschecker found the virus(es) in your email to the following recipient(s): - [EMAIL PROTECTED] Please check your system for viruses, or ask your system administrator to do so. For your reference, here are the headers from your email: - BEGIN HEADERS - Return-Path: [EMAIL PROTECTED] Received: from fataautomation.it (host138-88.pool8174.interbusiness.it [81.74.88.138]) by mail.fataautomation.it (8.12.3/8.12.3/Debian -4) with SMTP id i2GGjq30025917 for [EMAIL PROTECTED]; Tue, 16 Mar 2004 17:45:53 +0100 Message-Id: [EMAIL PROTECTED] From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: unknown Date: Tue, 16 Mar 2004 17:46:07 +0100 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary=03010558 -- END HEADERS -- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SENDER ! Virus found in message from you !
You sent to user perry message with VIRUS . Wiadomosc, ktora wyslales na adres perry zawierala WIRUSA. KAV Report: document_excel.pif infected: I-Worm.NetSky.d Wiadomosc wygenerowana automatycznie ! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sophos anti virus and mailmonitor on freebsd
Hi all, I'm trying to get Sophos Mailmonitor running on my 5.2 box, but to no avail. Below is a sequence of events... Installed Sophos Anti-virus for FreeBSD 3+. Sweep (the executable) works fine. File '/usr/local/bin/sweep' is of brand 'SVR4' (0). File '/usr/local/lib/libsavi.so.3.2.07.054' is of brand 'SVR4' (0). This is a library both SAV and MailMonitor use. Installed MailMonitor for Linux (there is no FreeBSD version). The install works a treat. The executable is called mmsmtpd, there is also a (library?) file called mmsmtp.out. File '/usr/local/sophos/mmsmtp/bin/mmsmtp.out' is of brand 'SVR4' (0). Installed linux_base-6.1_5 via packages Loaded linux.lo kldstat says: Id Refs AddressSize Name 19 0xc040 5d7f1c kernel 21 0xc09d8000 51a18acpi.ko 31 0xc24bb000 2000 dragon_saver.ko 41 0xc24e7000 19000linux.ko From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: cannot open shared object file: No such file or directory Created symlink /lib/ (was this correct?) ln -s /usr/local/lib/libsavi.so.3.2.07.054 /lib/libsavi.so.2 From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: ELF file ABI version invalid. Then I started trying everything... brandelf -t Linux /usr/local/lib/libsavi.so.3.2.07.054 From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: ELF file OS ABI invalid. So now I'm stuck. I'd appreciate any help anyone might have! I've done a search on freebsd-emulation but no luck. Thanks in advance Scott ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sophos anti virus and mailmonitor on freebsd
On Wed, 3 Mar 2004 12:50:18 + Scott [EMAIL PROTECTED] wrote: Hi all, I'm trying to get Sophos Mailmonitor running on my 5.2 box, but to no avail. Below is a sequence of events... Installed Sophos Anti-virus for FreeBSD 3+. Sweep (the executable) works fine. File '/usr/local/bin/sweep' is of brand 'SVR4' (0). File '/usr/local/lib/libsavi.so.3.2.07.054' is of brand 'SVR4' (0). This is a library both SAV and MailMonitor use. Installed MailMonitor for Linux (there is no FreeBSD version). The install works a treat. The executable is called mmsmtpd, there is also a (library?) file called mmsmtp.out. File '/usr/local/sophos/mmsmtp/bin/mmsmtp.out' is of brand 'SVR4' (0). Installed linux_base-6.1_5 via packages Loaded linux.lo kldstat says: Id Refs AddressSize Name 19 0xc040 5d7f1c kernel 21 0xc09d8000 51a18acpi.ko 31 0xc24bb000 2000 dragon_saver.ko 41 0xc24e7000 19000linux.ko From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: cannot open shared object file: No such file or directory Created symlink /lib/ (was this correct?) ln -s /usr/local/lib/libsavi.so.3.2.07.054 /lib/libsavi.so.2 From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: ELF file ABI version invalid. Then I started trying everything... brandelf -t Linux /usr/local/lib/libsavi.so.3.2.07.054 From /usr/local/sophos/mmsmtp/bin/ ran ./mmstpd -start Got the following error: /usr/local/sophos/mmsmtp-1.2.2/Linux-x86/bin/mmsmtp.out: error in loading shared libraries: libsavi.so.2: ELF file OS ABI invalid. So now I'm stuck. I'd appreciate any help anyone might have! I've done a search on freebsd-emulation but no luck. Thanks in advance Scott ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Sorry I can't help.. I'm curious if you tried sophos support? I'm going to be doing the same in the next few months and would be interested on what you find out. Aaron ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
