|How safe is this: Automatic scanning of mails for virus (LONG)||Mogens Kjaer||12/19/96 12:00 AM|
(Sorry for posting "source" code in this group, but our
ftp server is not running yet).
I would like your comments about this setup. We have not got our
This posting has two attachments: 1. my sendmail.cf file, 2. a
The sendmail.cf file has been modified so that all mail (incoming
This script file expands mime attachments into individual files.
McAfee's uvscan (for Linux) is called upon the expanded files.
An evaluation version of uvscan can be found at:
Care has been taken during the unpacking of the mail attachments
This is basically my first try to hack into sendmail.cf, so I might
- If this works OK, this is actually quite a cheap way of scanning
|How safe is this: Automatic scanning of mails for virus (LONG)||Valdis Kletnieks||12/19/96 12:00 AM|
Mogens Kjaer <car...@unidhp.uni-c.dk> writes:
> I would like your comments about this setup. We have not got our
> Care has been taken during the unpacking of the mail attachments
> tar xvf $E >>$tmpdir/logfile 2>&1
Umm.. you *did* know that a tar file can have absolute pathnames,
Also, your scheme as written will *NOT* stop a determined hacker from
Also, let's *THINK* for a moment. What are we trying to *accomplish*?
Sendmail runs on a Unix machine. How many *IN THE WILD* *UNIX* viruses
OK.. Next hypothesis: You're worried about your POP users getting mail
All in all, it looks like a complicated solution in search of a problem.
|How safe is this: Automatic scanning of mails for virus (LONG)||Mogens Kjaer||12/20/96 12:00 AM|
I >DID< think of this: The tar command on Linux by default strips off
to get it to restore absolute path names: Obviously I didn't add this
No, I'm not so worried about the determined hacker. It's the Joe
uvscan primarily checks for DOS virus, just like the ordinary DOS virus
The main difference between getting a virus by mail and by FTP is, that
Also in this case, I need one license of a virus checker (as it only
I totally disagree about this. I think we will see more and more macro
People that download an exe file generally know that there is a