[Esa-l] Files to poison: Hybris
John D. Hardin
jhardin at wolfenet.com
Thu Dec 14 06:52:15 PST 2000
On Wed, 13 Dec 2000, Graham Dunn wrote:
> I think this is going to be a moot point soon, judging from the
> noises John has been making about changing the filtering/poisoning
> approach lately.
You're using "moot" incorrectly. :)
Actually, the new model better lends itself to automatic updates than
does the current model, as you may want to implement a more draconian
security policy than the default and only having one policy file makes
that difficult to combine with automatic updates. With multiple policy
files you can keep the "standard poisoned attachments" list up-to-date
without losing your "poison all .EXEs" policy.
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
jhardin at wolfenet.com pgpk -a finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
"Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
does quite what I want. I wish Christopher Robin was here."
-- Peter da Silva in a.s.r
-----------------------------------------------------------------------
11 days until we celebrate Christmas by killing millions of trees
More information about the esd-l
mailing list