From owner-freebsd-questions@freebsd.org Wed Mar 23 22:09:37 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 03748ADBA15 for ; Wed, 23 Mar 2016 22:09:37 +0000 (UTC) (envelope-from kurt.buff@gmail.com) Received: from mailman.ysv.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id D67E51D3C for ; Wed, 23 Mar 2016 22:09:36 +0000 (UTC) (envelope-from kurt.buff@gmail.com) Received: by mailman.ysv.freebsd.org (Postfix) id D2165ADBA14; Wed, 23 Mar 2016 22:09:36 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D1B5AADBA13 for ; Wed, 23 Mar 2016 22:09:36 +0000 (UTC) (envelope-from kurt.buff@gmail.com) Received: from mail-io0-x243.google.com (mail-io0-x243.google.com [IPv6:2607:f8b0:4001:c06::243]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 9B0431D3B for ; Wed, 23 Mar 2016 22:09:36 +0000 (UTC) (envelope-from kurt.buff@gmail.com) Received: by mail-io0-x243.google.com with SMTP id p21so4787187ioe.1 for ; Wed, 23 Mar 2016 15:09:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc; bh=EAwyMj+sF9NycjJfnMdU9j9UJV02Rqi8K7pq344Ixfs=; b=twFJh6qRrvSfAgHabJdksggWxl/wPF+HX0DOkqWjAzJWmNcnbDYOe1dLmYcvun2Eoe yDaXu3oax0P0bYeCZ2naNd8WjKH1g89TcomBoXeiK+/M2jQB8f1NpiUWvd4dbG6nrtNh qGVjx7VK99x239nxEbCkRxo+o7pCxHAvlBuPsf7PHup0sxSDLW4r80q97C4RU6JV2k6F omqRxD6SUu2i8mSIl8zlNYFPAW5E8Xk8he0WCUeQvbbni4cMD+0apFPKNqClAW7niOxr bMCUE1MZ+hWAXEKXtB1Wbb5Vst4K4z2M5LDrxg8s0WO0O/v1t1Rlf8YCh50Go2kDB0Tk Jd3A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc; bh=EAwyMj+sF9NycjJfnMdU9j9UJV02Rqi8K7pq344Ixfs=; b=XEzApB/3jrlhxK7NlbFJ8nWAZhJsi0x+su+3F6lCuLvhGKjXjPg4SRZG83qbssIMWQ p3/y4I4ChU9sc9OWFIVnERIdZTqPlD6Qpbt13P0/CzEaMv1EicLN1mgA5z/6c0/ignct UCmhAjLXW7uSHycikq7Y9QTe8zyvInlBjdMuHtICF5EVEe9QJUYaCr6FOMvCDkAFs3Zb wtzk8gcC0CIfZGF195yDRdkccOVmoujhiJNTkByxuQ0NGpcqhuo371boDYUD6CJ3yqpj ovS1LxwRgrbbWul9P7vQMAGJBYrvw/6jF+gpW+Y1AMQQXiclHiWj9VQDP1NSyYKgAHqR uWwA== X-Gm-Message-State: AD7BkJKStDmDftE6OXaj4C5awhx8a5kpKhFw7uATx0d4D6bFVmJkb8+MnpSWp2zfTzdaf3h4hJPyJ6tYcLqQUQ== MIME-Version: 1.0 X-Received: by 10.107.7.20 with SMTP id 20mr5841169ioh.181.1458770975946; Wed, 23 Mar 2016 15:09:35 -0700 (PDT) Received: by 10.79.21.71 with HTTP; Wed, 23 Mar 2016 15:09:35 -0700 (PDT) In-Reply-To: <56F30107.7090301@bananmonarki.se> References: <1458712914.1578.37.camel@au.dyndns.ws> <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu> <56F30107.7090301@bananmonarki.se> Date: Wed, 23 Mar 2016 15:09:35 -0700 Message-ID: Subject: Re: [Phishing]Re: Anti-virus for FreeBSD From: Kurt Buff To: Bernt Hansson Cc: Daniel Feenberg , Valeri Galtsev , Olivier Nicole , "freebsd-questions@freebsd.org" , Wayne Sierke , krad Content-Type: text/plain; charset=UTF-8 X-Mailman-Approved-At: Wed, 23 Mar 2016 22:18:14 +0000 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Mar 2016 22:09:37 -0000 See also /usr/ports/security/maia and /usr/ports/mail/mimedefang. I've used the first one to great effect, though we (unfortunately, to my mind) replaced it with a Barracuda appliance which did basically the same thing, and cost a lot more. I tried implementing mimedefang, but staff complained bitterly about their html-formatted emails being trashed. Kurt On Wed, Mar 23, 2016 at 1:48 PM, Bernt Hansson wrote: > On 2016-03-23 17:31, Daniel Feenberg wrote: >> >> >> >> On Wed, 23 Mar 2016, Valeri Galtsev wrote: >> >>> >>> Partly to toss some more fuel into the fire ;-) and partly to discourage >>> too harsh judgement of "some anti-vurus software not catching some >>> viruses" (or should I say virii as a plural of Latin word virus?) >>> >>> First of all, the whole anti-virus approach is fundamentally flawed. In >>> fact, you can not enumerate bad (what anti-virus is trying to do). You >>> only can enumerate good and prohibit everything else. So, don't be too >>> harsh on those [anti-viruses] that miss some of evil things sometimes: >>> remember, they are trying to do the task that is fundamentally flawed. >>> >> >> Is there a package out there that would block all email messages with >> binary executable content? I understand that pdf and word files may contain >> executable code - the package would have to be able to distinguish such >> files with executable code and those without. (Is that possible)? >> >> For us, that would be a satisfactory substitute for Kaspersky, perhaps >> even a superior one. >> >> daniel feenberg > > > Yes. There was a port called messagewall, where one could block attachments > and html and other nasty stuff. > > Not in the ports any more. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"