[unisog] FWD: [SECURITY] bugbear variant

Arnold, Jamie harnold at binghamton.edu
Fri Jun 6 13:48:30 GMT 2003


Nope..this method has and does work.  Some places won't allow it.  I've done
this in our Exchange environment since before explorer.zip and we've been
fortunate to not have had a single event in quite a few years (Exchange).

The student's machines are another matter entirely ....


-----Original Message-----
From: Joseph Brennan [mailto:brennan at columbia.edu] 
Sent: Friday, June 06, 2003 9:28 AM
To: unisog at sans.org


> We got hit with this today before Norton Antivirus came out with the 
> definitions.


Or forget the vendors' marketing and just routinely delete email attachments
with names ending .scr, .pif, and .exe.  That's all it takes to stop this
one *and the next one*.  Or am I missing something?

Joseph Brennan          Columbia University in the City of New York
postmaster at columbia.edu                 Academic Technologies Group





More information about the unisog mailing list