Paul Karagianis wrote: > > On 9 Jan 2003, at 13:06, Bill Verity wrote: > > >With all the spoofed mail these days from viruses like klez, I'm thinking > >of adding this header to all of our lists. > > And? You get a bogus posting (that hopefully gets rejected for other > reasons) from [log in to unmask] that really came from verizon.com. > Will you be asking the subscriber if they have any friends at verizon > and what their ID's are, so you can email them? Hi Kary and lstown-l, I'm not Bill, but I have dealt with a lot of Klez and I generally write (if at all) to the ISP, not to the user. I have misgivings knowing that the user probably didn't send the virus deliberately; I don't want to get him or her "in trouble". But I would hope that most ISPs would not treat a virus complaint the same as, say, a spam complaint! If someone knows that I am wrong on this, please tell me - I may want to change what I do!! Someone working for the ISP may be able to determine the correct user from the full headers even if an "outsider" could not. Finally, enough virus complaints may cause an ISP to rethink certain issues related to user education, server-side antivirus measures, etc. Margaret King Michigan State University