[33336] in bugtraq
Re: RFC: virus handling
daemon@ATHENA.MIT.EDU (Patrick Proniewski)
Mon Feb 2 23:47:04 2004
In-Reply-To: <1075304734.29593.147.camel@hostmaster.org>
Mime-Version: 1.0 (Apple Message framework v609)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Message-Id: <43FFF692-51BF-11D8-90F0-0030654D97EC@patpro.net>
Content-Transfer-Encoding: 7bit
Cc: Liste BugTrack <bugtraq@securityfocus.com>
From: Patrick Proniewski <patpro@patpro.net>
Date: Wed, 28 Jan 2004 19:24:52 +0100
To: Thomas Zehetbauer <thomasz@hostmaster.org>
On 28 janv. 2004, at 16:45, Thomas Zehetbauer wrote:
> Looking at the current outbreak of the Mydoom.A worm I would like to
> share and discuss some thoughts:
You bring some definitely interesting points here.
I agree with your 1) and 2), but 3) rises some technical concern
> 3.1.2.) e-mail Alias and Web-Interface
> Additionally providers should provide e-mail aliases for the IP
> addresses of their customers (eg. customer at 127.0.0.1 can be reached
> via 127.0.0.1@provider.com) or a web interface with similiar
> functionality. The latter should be provided when dynamically assigned
> IP addresses are used for which an additional timestamp is required.
could be a really good idea, if not so easy to use for spammers or even
for virii. The moment you setup such a service, spammers/virus coder
will write a script that can reach every single user with an active
connexion. It's a really major drawback I think.
patpro
--
je cherche un poste d'admin-sys Mac/UNIX
(ou une jeune et jolie femme riche)
http://patpro.net/cv.php
