-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Tony Finch wrote:
On Wed, 17 Aug 2005, Stuart D. Gathman wrote:
We take the much simpler route of not allowing executable content in
email. Period.
It also includes signatures for phishing attacks and zipped payloads,
which your policy won't handle.
Blocking all executable content includes checking inside archives.
It is more effective that the best virus scanning software as a
defensive line, because it does not depend on virus signatures that
are inevitably going to be out of date for zero-day viruses.
Of course, having a good virus scanner behind it to catch macro
viruses is a necessity, but it keeps the load on the scanner
way down.
Defense in depth, the only way to fly.
- --
Daniel Taylor VP Operations Vocal Laboratories, Inc.
dtaylor(_at_)vocalabs(_dot_)com http://www.vocalabs.com/
(952)941-6580x203
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFDA8T18/QSptFdBtURAh0DAJ4hoTNYnzG+FR5jpSZHoajLkX/LGwCfSoLD
atohyC+mQwz4+GTwsblqfVQ=
=WESv
-----END PGP SIGNATURE-----