You don't by chance have your system set up to relay for local addresses do
you?
I ask because IMAIL is accepting the message and the message appears to be
from a local username (probably forged -- unless you are seeing infected
emails from your actual users). The copyall account should not be
I've also seen these identified with forged addresses:
FORGINGVIRUSMimail
FORGINGVIRUSDumar
FORGINGVIRUSSober
FORGINGVIRUSHolar
Is this a good current list?
FORGINGVIRUS Braid
FORGINGVIRUS Bridex
FORGINGVIRUS Bugbear
FORGINGVIRUS Hybris
FORGINGVIRUS Lentin
FORGINGVIRUS
And don't forget to restart services after making the change, or it won't
help.
-Original Message-
When there is a virus that is causing huge problems due to its volume (as
was the case for many people with Sobig.F), the best thing to do is find
the IPs they are being sent from, and
Using the logic that all servers on DSL are spammers, then, sure, all linux
servers with mailscanners are guilty by associatio.
-Original Message-
From: Fritz Squib
So you're saying if I send you an email from my Linux servers... which IS
running MailScanner, then I am guilty by
Are you seeing this as a pif inside an attached .eml? Although not caught
by anything, I had a very strange undeliverable mail message in my box
today that fit this criteria. The Sender and rDNS were both blank in the
message.
Received: from is3.auto-trol.com [143.198.15.20] by staffingtech.com
Except that the IMAIL server itself was not protected, unless another
real-time scanner is installed.
And any user that disabled their real-time scanner was not protected (as the
emails kept coming thru).
And users that didn't have their signatures set to download often.
And home users that had
DOS scanner is not needed, use the 32 bit version instead. I believe you
need the OnDemand Scanner option to get that. And you'll need the
Scheduler/Updater to keep definitions up to date.
Do NOT install the RealTime Protector (or it will run every time you reboot,
shutting down scanning of
Oddly enough, my fprot started catching the problem about 7 minutes before I
downloaded the latest version (3.14a) -- I presume due to the 8/4/03
signatures that downloaded automatically.
Karen
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of EvanLists
Sent:
Not only a new version, but a re-release of 3.14 (my download of that
version is dated 6/26, but a new release date for 3.14 is shown on the web
server now: 8/3/03). AFAIK, the software never updates online, you have to
log in and download the new version and install manually.
-Original
Thanks Scott.
I'll forward to them, perhaps they can locate a real programmer and get it
fixed.
Karen
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of R. Scott Perry
Sent: Wednesday, August 06, 2003 6:42 PM
To: [EMAIL PROTECTED]
Subject: Re:
10 matches
Mail list logo