[OPLINTECH] Another virus related spam issue, but a new solution
Chad Neeper
cneeper at level9networks.com
Mon May 4 12:52:03 EDT 2009
Aside from perhaps selective egress blocking at the network perimeter
firewall and keeping current on the virus definitions, is there anything
else you'd like us to be doing at individual libraries to mitigate these
problems?
Chad
-----------------------
Chad Neeper
Senior Systems Engineer
Level 9 Networks
740-548-8070 (voice)
866-214-6607 (fax)
-- Full LAN/WAN consulting services --
-- Specialized in libraries and schools --
Karl Jendretzky wrote:
> All,
> I was greeted this morning with yet another infected library machine
> using the OPLIN mail server as a spam cannon. I've already spoken to the
> library, and if any details come up that could be useful to the group,
> we'll let you know.
>
> With increased virus activity out in the libraries, I'm trying to find
> the best way to lock down our services, while still providing access for
> library staff. At this point I think the best way for me to prevent
> exploits like this, while still allowing libraries to use our server as
> a relay for their ILS notices, is by allowing relaying based partly off
> of the "from" address.
>
> If you are using the OPLIN mail server as a relay, and the mail is
> coming from an email address that isn't @oplin.org, I need you to shoot
> either myself, or OPLIN support an email letting us know what address,
> or at least domain the emails are coming from. My thought is that going
> this direction, I can stop the phishing emails, while not requiring
> anyone in the network to reconfigure their ILS setup.
>
> If you have any questions, feel free to contact me.
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3273 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.oplin.org/pipermail/oplintech/attachments/20090504/ce5112a5/smime.bin
More information about the OPLINTECH
mailing list