[KLUG Members] The latest M$ virus.

Bruce Smith members@kalamazoolinux.org
Thu, 04 Mar 2004 09:15:25 -0500

Previous message: [KLUG Members] Sound Issues with Fedora Core
Next message: [KLUG Members] The latest M$ virus.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Anyone know of a way to block password protected ZIP files on the MTA?
(and still allow regular zip files through - after virus scanning their
contents)

Yes, the latest virus has found away around virus scanning by embedding
itself in a password protected zip file.  Since the virus scanner can't
unzip the file to scan it, it passes the file though.  The message text
contains the password to the zip file (which is randomly generated), and
looks like a tech support message telling the user to unzip and run the
enclosed .exe file.

 - BS

Previous message: [KLUG Members] Sound Issues with Fedora Core
Next message: [KLUG Members] The latest M$ virus.
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]