SC - What to look for - new virus
Siegfried Heydrich
baronsig at peganet.com
Fri May 19 08:39:29 PDT 2000
This is a multi-part message in MIME format.
- ------=_NextPart_000_02C5_01BFC186.E49DF9C0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
As it stands, a definite maybe. I'm not sure if this worm is =
utilizing the same weakness that the original LOVEBUG worm used, as I =
haven't seen source code on it yet. If it is, then probably so,
From what I have been able to tell, your security settings in a =
Windows environment are determined by the defaults set in Outlook. Go =
into it, and set the security options to High. You can also, in whatever =
e-mail package you're using, set your security options and filters there =
as well. My recommendation would be to disable the option that =
automatically opens attachments in your server, and set a filter for =
.vbs extensions in attachments. There's NO reason why anyone should be =
sending a vb script as part of an e-mail.=20
Sieggy
Sieggy,=20
thanks for the information you've been sending out. One question, =
however. I understood from the blurbs on TV news this morning that it =
only affects those with MS Outlook as their mail server. I have MS =
Outlook on my machine, but never use it...it's only there because of =
that infernal packaging thing that MS does. Is there any possibility I =
could get this virus?=20
- ------=_NextPart_000_02C5_01BFC186.E49DF9C0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2722.2800" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV> As it stands, a definite maybe. I'm not sure if =
this=20
worm is utilizing the same weakness that the original LOVEBUG worm used, =
as I=20
haven't seen source code on it yet. If it is, then probably so,</DIV>
<DIV> From what I have been able to tell, your =
security=20
settings in a Windows environment are determined by the defaults =
set in=20
Outlook. Go into it, and set the security options to High. You can =
also, in=20
whatever e-mail package you're using, set your security options and =
filters=20
there as well. My recommendation would be to disable the option that=20
automatically opens attachments in your server, and set a filter for =
.vbs=20
extensions in attachments. There's NO reason why anyone should be =
sending a vb=20
script as part of an e-mail. </DIV>
<DIV> </DIV>
<DIV> Sieggy</DIV>
<BLOCKQUOTE=20
style=3D"BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: =
0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
<DIV> </DIV>Sieggy, <BR>thanks for the information you've been =
sending=20
out. One question, however. I understood from the blurbs =
on TV=20
news this morning that it only affects those with MS Outlook as their =
mail=20
server. I have MS Outlook on my machine, but never use it...it's =
only=20
there because of that infernal packaging thing that MS does. Is =
there=20
any possibility I could get this virus? </BLOCKQUOTE></BODY></HTML>
- ------=_NextPart_000_02C5_01BFC186.E49DF9C0--
More information about the Sca-cooks
mailing list