Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: To send or not to send 'virus in email' notifications?

  • From: Matthew Kaufman
  • Date: Wed Aug 20 10:49:16 2003

Absolutely not.

SoBig.F, like many others, forges the sender address. That means that your
notifications:
  1) Don't make it back to the person with the infection
  2) Simply add more clutter to the mailbox of the person whose address was
used (in addition to all the bounce messages)

In the enterprise, this is a great argument for scanning outbound email with
positive identification of whose outbound mail you're scanning.

Matthew Kaufman
matthew@eeph.com 

> -----Original Message-----
> From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On 
> Behalf Of Joe Maimon
> Sent: Wednesday, August 20, 2003 7:25 AM
> To: nanog@merit.edu
> Subject: To send or not to send 'virus in email' notifications?
> 
> 
> 
> Considering the amount of email traffic generated by responding to 
> forged  virus laden email from culprits like sobig should email virus 
> scanning systems be configured to send notifications back to 
> sender or not?
> 
> 
> 
> 





Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.