Gee, I'm glad I don't work on a system you administer Josh, 'cause I'd
be wasting too much time trying to get around the restrictions you set
to get my work done.  Do you have so much free time that when your
support dept needs to get a ZIPped file from a customer containing a log
or workbook, or some other debugging attachment that you can set up
a one-time only download area?  And then talk Mr. MBA into trying to
send it with an SSL client?

My tax accountant just e-mailed my return as a ZIP file of .pdf images
for my approval. She knows how to her tax prep software and e-mail, and
I can't even get her to use PGP because "It's too complicated". She's
NOT going to touch a DOSBOX on her machine.

My company's HQ is in Omaha, NE and I'm in the TC. The HR department 
sent me an itemized list of payments my cafeteria 125 monies went to
via an XCel spreadsheet attached to an e-mail. HR drones can't handle
SSL or FTP.

So, you "solution" while it may work for your company, is not a good
generalized solution.

YMMV

Mike Bird (Speaking for himself)

tclug-list-request at mn-linux.org wrote:

> Date: Fri, 9 Apr 2004 10:49:32 -0500
> From: Josh Trutwin <josh at trutwins.homeip.net>
> Subject: Re: [TCLUG] Anti-Virus Software
> To: TCLUG Mailing List <tclug-list at mn-linux.org>
> Message-ID: <20040409104932.00005840 at jtrutwinxp.ntbsi.bsi.corp>
> Content-Type: text/plain; charset=US-ASCII
> 
> On Fri, 09 Apr 2004 09:05:04 -0500
> Jeff Nelson <stutterstutt at comcast.net> wrote:
> 
> 
>>I don't get this reasoning. Yes, executables carry viruses. But how
>>is it a good idea to tell people to use a back door communication
>>mechanism that subverts the virus scanners? How do you ensure that
>>the ftp dropbox doesn't contain infected files?
> 
> 
> Not FTP, but very controlled upload/download over SSL with
 > authentication that I control.  And no, I cannot guaruntee that
 > they don't upload or download an infected file, that would be the
 > job of their client scanner, or I could easily add scanning of
 > uploaded files with ClamAV as well, which I probably should now
 > that I think of it.  So actually I could guaruntee that they don't
 > upload infected files.
> 


_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
http://www.mn-linux.org tclug-list at mn-linux.org
https://mailman.real-time.com/mailman/listinfo/tclug-list