"Clearly Bogus" isn't always so.. (was Re: [unisog] Request Opinions on Anti-Virus Software

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Mon Jun 6 16:33:47 GMT 2005


On Mon, 06 Jun 2005 11:46:17 EDT, "Jon E. Mitchiner" said:

> the attachment could have been a virus and tries to educate the user on 
> dangers of opening attachments that are clearly bogus (similar to the 
> "Dear domain.edu user,..." viruses).

The problem is that what is "clearly bogus" to anybody sufficiently security-clued
to be subscribed to this list may not be at all "clearly" to the end users.

Consider the phishing scams that display a GIF in a box, and then warn "If the
box above doesn't say 'AUTHENTIC', *DO* *NOT* *LOG* *IN*".  You can fill in the
rest for yourself - you *know* what the box says.  What percent of your users
would be able to understand what's wrong with the picture?

For that matter, what percent of your on-staff *developers* don't understand, and
perpetrate similar things on your users? ;)

What are sites doing to make sure that their own websites and emails don't
give the wrong message?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/unisog/attachments/20050606/b3d5e9e6/attachment-0001.bin


More information about the unisog mailing list