Paul Petersen wrote: > It's frustrating because the only systems that prompt a user to open the > attachment are XP w/IE6.0 - regardless of what IE security > patch is installed on the other OS's.
A) Stop using XP - XP is evil. B) Stop using IE - There's Opera, Netscape, and others that *don't* do evil things. C) Stop using Windows - Yeah, yeah... wishful thinking... :-) > Yes I could theoretically implement the Outlook Security Patch and totally > lock downOL/IE to not do anything with > scripts (but not sure about IFRAME tags) and then look for another job. How about a transparent proxy for outbound port 80? Or, on your mail server, filter out any email with a Content-Type: that includes or would allow HTML. Or... maybe look in email bodies for <html> tags. Strip them out. The resultant mess will be horrible, but then, HTML doesn't belong in email in the first place. And cute little tricks probably won't work at that point. -- John Oliver System Administrator hosting.com, an Allegiance Telecom company mailto:[EMAIL PROTECTED] (858) 637-3600 http://www.hosting.com/
