Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Corporate Anti-Virus strategies



On Thu, Aug 14, 2003 at 09:00:36PM -0400, Duane Morin wrote:
> So I trip my way into this magazine article assignment on corporate 
> antivirus strategies.  Anybody got any recommendations where I could do 
> some research?  In particular it would be great to find some IT management 
> types that wouldn't mind being quoted.  I'm coming out of financial 
> services where nobody talks about anything without half a dozen PR people 
> and lawyers present. :(

Ask on antispam lists and MTA lists (sendmail, qmail, postfix, exim).
Mail admins hang out there.

The award for simplest effective strategy has to go to Russell Nelson,
www.crynwr.com, for noting that all the non-macro viruses for MS
products are executables... and writing a filter which stops MIME
attachments that have the MS exe header. It won't stop the current spate
of worms, but it certainly works against mail viruses.

In corporations where policy allows, only designated server networks are
allowed to respond to requests (send syn-ack packets). Random desktop
machines are all on networks where these are filtered out. This helps
contain infections.

-dsr-

-- 
Network engineer / pre-sales engineer available in the Boston area.
http://tao.merseine.nu/~dsr




BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org