LSTSRV-L Archives

LISTSERV Site Administrators' Forum

LSTSRV-L
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Topic: [<< First] [< Prev] [Next >] [Last >>]

Parts/Attachments: text/plain (20 lines)
Print Reply
Mime-Version:
1.0
Sender:
LISTSERV site administrators' forum <[log in to unmask]>
Subject:
Re: Repercussion of Viruses?
From:
Pete Weiss <[log in to unmask]>
Date:
Wed, 28 Jan 2004 11:11:31 -0500
In-Reply-To:
<[log in to unmask] >
Content-Type:
text/plain; charset="us-ascii"; format=flowed
Reply-To:
LISTSERV site administrators' forum <[log in to unmask]>
 
At 10:29 01/28/2004 Wednesday, Brian Stoughton wrote:
 >Hi all.
 >
 >I'm seeing an issue where virus emails (subject line "Hi" etc...) are being
 >sent to some of our lists.  These lists are restricted so that only editors
 >or owners may send to the list, and they also require confirmation.  The
 >owners/editors are claiming that they have not received requests for
 >confirmation, and I don't see any evidence in the listserv logs that show
 >otherwise.  Any ideas?

As far as I have experienced:

1) spoofed FROM: field (appearing to come from a list or moderator)
bounces from some third-party and then the person receiving the bounce
thinks it was distributed via the list

2) the Approved-By: RFC822 [?] seems to be the "first" check in bypassing
moderation :-( and a faulty receiver MUA that reflects back to the list
will wreak havoc.

ATOM RSS1 RSS2