LISTSERV - LSTOWN-L Archives - COMMUNITY.EMAILOGY.COM

LSTOWN-L Archives

LISTSERV List Owners' Forum

LSTOWN-L

	LISTSERV Archives
	LSTOWN-L Home

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives
Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Re: Virus protection of lists
"Good, Don" <[log in to unmask]>
Wed, 17 Jan 2001 10:20:43 -0600
text/plain (125 lines)
However, Attachments=No does not answer the question by
Kevin Parris <[log in to unmask]> who wrote:

>We need to be able to send attachments on some of our lists, but are
>concerned about the spread of viruses through the list server.  LSoft
>support won't make any particular comments about what does or does not
>work, so I'm hoping those of you who've been doing this for a while can
>help me out.  What kind of anti-virus setup are you using to scan
>messages and attachments arriving at your LISTSERV for distribution?
>We're running LISTSERV and LSMTP together on a WindowsNT 4.0 platform.
>
>  Thank you!

I am planning to test the following setup:
Existing:
Primary mail receiver host with anti-virus software at "abc.company.com"
LISTSERV and LSMTP server on NT at "listserv.company.com"
DNS A (address) entries for both, DNS MX entry for "company.com"

Plan:
Rename LISTSERV server e.g. xyz.company.com, but do not put in DNS.
Delete DNS A record for "listserv.company.com".  Add DNS MX record for
"listserv.company.com", but point to "abc.company.com" mail server.  Add
pointer to "abc.company.com" mail server to have mail sent to
"listserv.company.com" forwarded to "xyz.company.com".  The
"abc.company.com" mail server will probably need a local HOSTS file to
identify "xyz.company.com" instead of DNS.

Desired result:
Incoming mail to "listserv.company.com" will be checked for viruses by the
"abc.company.com" mail server before forwarding to "xyz.company.com".  If
"xyz.company.com" does not receive any viruses, then it cannot send any.
Outgoing email will be sent directly by LSMTP on "xyz.company.com".

There are probably some LSMTP and/or LISTSERV site parameters that need to
be changed.  This is a future project, so if anyone wants to test it
sooner, be my guest.  And good luck.


-----Original Message-----
From: Pete Weiss [mailto:[log in to unmask]]
Sent: Wednesday, January 17, 2001 8:04 AM
To: [log in to unmask]
Subject: Re: Virus protection of lists


[I offer the following *as is* w/ no further explanation.  I had recently
sent this to another correspondent.]

 >help me out.  What kind of anti-virus setup are you using to scan
 >messages and attachments arriving at your LISTSERV for distribution?

--

First and Foremost, we use LISTSERV(R) brand mailing list management
software.  We have configured it (relative to security) as such, which
allows us to better ameliorate spam and virus/worms:

ADMINISTRATION of USA Financial Aid Offices

Subscription= Open,CONFIRM Reply-To= SENDER,Respect
Confirm-Delay= 71 h
Send= PRIVATE           Confidential= No        Review= owner
Validate= NO            Language= NOHTML
Attachments= No
Default-options= Repro,Short,Review
Filter= Also,*postmast*@*,*postmstr*@*,*maiser*@*,*nobody*@*
Renewal= 3-monthly,Delay(7),Probe
Sizelim= 200

This translates into:

One must subscribe in order to be allowed to post to the list

One can only subscribe by going through a process: customer "asks" our
software to subscribe, our software acknowledges that request by
returning a pseudo random number to the requester, the requester returns
that PRN back to our software and is successfully subscribed

Subscribers can not get a list of other list subscribers, unless the
latter post to the list

List does NOT permit non-text attachments e.g., NO .WDP, .EXE, JPG, .XLS,
.VCARD

We limit per message size to 200 lines

List distributions "default" REPLY-TO: the poster, and not the list (this
isn't fool-proof)

New subscribers are automatically moderated, though by manual
intervention, we do turn off moderation for all .EDU subscribers; all
others must "prove" themselves (within our target audience) in order to
post w/o moderation

Multiple list-owners are defined and we encourage the use of the generic
list-owner address of [log in to unmask]; list-owners
coordinate their activities so that mail to the generic address is
answered a timely fashion

One of its "secondary" features is an inter-connected network of peered
(list) servers and it maintains an anti-spam feature among themselves, as
close to real-time as a store-n-forward network will allow.

Our institution has both centralized and distributed security,
information, and network offices/personnel.  We highly encourage, and
provide licenses (some no-charge, others costs) and WEB sites for A/V
software.

See also:

http://www.emoderators.com/moderators/how2list.html

/Pete Weiss
Sr. Systems Engineer -- Penn State


At 09:56 01/16/2001 Tuesday,
 >Our state and regional organizations are looking at what can be done for
our
 >list serves to combat virus transfers.
 >
 >Would you mind sharing more information regarding what you do and other
 >possible resources we can investigate along these lines?
ATOM RSS1 RSS2
COMMUNITY.EMAILOGY.COM