Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 23 Mar 2016 15:09:35 -0700
From:      Kurt Buff <kurt.buff@gmail.com>
To:        Bernt Hansson <bah@bananmonarki.se>
Cc:        Daniel Feenberg <feenberg@nber.org>, Valeri Galtsev <galtsev@kicp.uchicago.edu>,  Olivier Nicole <olivier.nicole@cs.ait.ac.th>,  "freebsd-questions@freebsd.org" <questions@freebsd.org>, Wayne Sierke <ws@au.dyndns.ws>, krad <kraduk@gmail.com>
Subject:   Re: [Phishing]Re: Anti-virus for FreeBSD
Message-ID:  <CADy1Ce4SO4rayVV=7LouFcYw9O00s6=3GxbHh0Xsg8zErP=0Yw@mail.gmail.com>
In-Reply-To: <56F30107.7090301@bananmonarki.se>
References:  <wu7vb4fm8ji.fsf@banyan.cs.ait.ac.th> <CALfReyeHNrqZsCd_-3gMb%2B5RDEnW8aK2QfYCDRSBG%2B3bN5tpsQ@mail.gmail.com> <1458712914.1578.37.camel@au.dyndns.ws> <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu> <alpine.LRH.2.20.1603231224140.8892@sas1.nber.org> <56F30107.7090301@bananmonarki.se>

next in thread | previous in thread | raw e-mail | index | archive | help
See also /usr/ports/security/maia and /usr/ports/mail/mimedefang.

I've used the first one to great effect, though we (unfortunately, to
my mind) replaced it with a Barracuda appliance which did basically
the same thing, and cost a lot more.

I tried implementing mimedefang, but staff complained bitterly about
their html-formatted emails being trashed.

Kurt

On Wed, Mar 23, 2016 at 1:48 PM, Bernt Hansson <bah@bananmonarki.se> wrote:
> On 2016-03-23 17:31, Daniel Feenberg wrote:
>>
>>
>>
>> On Wed, 23 Mar 2016, Valeri Galtsev wrote:
>>
>>>
>>> Partly to toss some more fuel into the fire ;-) and partly to discourage
>>> too harsh judgement of "some anti-vurus software not catching some
>>> viruses" (or should I say virii as a plural of Latin word virus?)
>>>
>>> First of all, the whole anti-virus approach is fundamentally flawed. In
>>> fact, you can not enumerate bad (what anti-virus is trying to do). You
>>> only can enumerate good and prohibit everything else. So, don't be too
>>> harsh on those [anti-viruses] that miss some of evil things sometimes:
>>> remember, they are trying to do the task that is fundamentally flawed.
>>>
>>
>> Is there a package out there that would block all email messages with
>> binary executable content? I understand that pdf and word files may contain
>> executable code - the package would have to be able to distinguish such
>> files with executable code and those without. (Is that possible)?
>>
>> For us, that would be a satisfactory substitute for Kaspersky, perhaps
>> even a superior one.
>>
>> daniel feenberg
>
>
> Yes. There was a port called messagewall, where one could block attachments
> and html and other nasty stuff.
>
> Not in the ports any more.
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADy1Ce4SO4rayVV=7LouFcYw9O00s6=3GxbHh0Xsg8zErP=0Yw>