VIRUS ALERT!! New nasty in attachments [Archive] - Fly Fishing Forum

: VIRUS ALERT!! New nasty in attachments


fredaevans
12-03-2001, 12:12 PM
I've gotten two e mails in past few days from folks on the International Spey Board or the Flyfishing Forum with buggy attachments.

Fortunately, the Banks systems are as current as money can make them so both were caught by the main server and squashed.

The virus comes in as an attachment (don't they all?) and the most common one (twice for me) is an attachment called "NEWS_DOC.DOC.scr which has the virus W32.Badtrans.B@mm" imbedded in it. Always check with a sender before opening up an attachment to assure it's one they've sent and are "sure of" prior to that second click with the mouse key.

ps: jdjones, you got it 'bad!'
Fred

juro
12-03-2001, 02:32 PM
That's it attachments are hereby shut down... :D

Sean - what is the risk? I suppose someone could try to attach a corrupt file here but we could squash the post immediately.

Another option is to approve attachments before they are accepted, this SW supports that.

How 'bout if we all vow to douse anyone who attaches a virus to a post with pogie oil and light a match? :eek:

sean
12-03-2001, 03:13 PM
It looks we have the forum set so only attachments ending in gif,jpg,txt,bmp,jpeg are accepted. Since these are not executable file extensions I don't think we have to worry about anything.

We should be immune to email attachment viruses as posting to the site doesn't involve email at all.

I guess we will have to save the pogie oil for something else....


-sean

DFix
12-03-2001, 03:26 PM
I'm just an old dinosaur programmer, so don't anyone think I know what I'm talking about, but - are there not "txt" file attachments which contain executable viruses? :confused:

fredaevans
12-03-2001, 03:28 PM
Couple of other folks here at the Bank say they've had their Home computer's Norton or McAffee's squash this same "bug" over the weekend.
Fred

sean
12-03-2001, 03:41 PM
You can put an executable file in a txt file but it will not be executed by the browser. The reason being is a browser knows to open a txt file as text and not execute anything inside of it. You will just a get a bunch of complied code. Alot of viruses out there will do something like hello.txt.src which then becomes excutable by the browser.

Realistically I don't think we need even accept txt files as that option really isn't going to be used. Juro what do you think?

-sean

juro
12-03-2001, 03:52 PM
Let's get rid of it since it's never been used and it's kind of redundant really... the post is text as well.

We've had more than our share of BB rebuilds lately! ;)

fredaevans
12-03-2001, 06:30 PM
An additional thought. Given the Banks Norton (as well as our McAffee at home) chomped the incoming nasty is it possible to run our messages through such a system?

Don't know how "our" board server is set up (it's the wife and all four of the kids who are propeller-heads) but this may be a fairly simple procedure to implement. Heck, Costco's selling the lastest McAfee for $39.99 with a $40 dollar mail in rebate (no kidding!!).

fe

fredaevans
12-03-2001, 08:19 PM
Got a hold of Jim Jones, whose name is coming out on a couple of the "nasties." Interesting thing is it's using his screen name but the e mail address is not his ... but who looks at that?

Anyway, he's had a 'heads-up."
Fred