All file OM list email file attachments I've received for some time are
zero bytes in size and are therefore benign (they don't trigger McAfee AV
either; the same attachments from other sources do). I believe the list
has been set up to truncate them to zero.
BTW, I am _also_ running Zone Alarm at maximum security as a firewall. To
the rest of the internet I do not exist if probed, pinged or otherwise
queried. My machine simply ignores the low level request with zero
response. It is truly amazing the frequency of port probing and other
shenanigans that go on at a low level most users _never_ see. I have it
set up to change _any_ inbound email file attachment that has _any_ Windoze
executable file extension to a benign non-executable one. Trapped two
viruses attached to non-list emails today alone.
Something to think about, most _especially_ if you are running 24/7 on a
DSL!!!! With the numbers of personal users using DSL climbing this is
going to be a very, very real problem. Dial-ups are usually at less risk
simply because they normally have dynamically assigned IP addresses and are
only on line for short periods. However, the risk is _not_ zero. There
are unplugged security holes in Windoze that, if left open without a
firewall, can be exploited.
Tris,
Very, very important!!!! Ensure you have not only the newest DAT files for
your AV software but the most current "engine" also. Then run the most
thorough scan you can through every nook and cranie on your box, including
all archives (zip, etc.). The "Hybris" is particularly ugly and embeds
executables in various places (zip archives is one of them) to resurrect
itself on your machine like Lazarus rising from the dead. The "Hybris" is
most commonly distrbuted via the "Snow White" email we've all seen.
-- John
At 03:58 7/22/01, Tris wrote:
As a matter of fact I was going to post to this list as I have a suspicion
that this list has been infected somehow with Trojan horse virus, but I
didn't ant to seem an alarmist--I had no proof it was from this
list--still don't for that matter, though you might now be able to confirm
my suspicion.
I ran into a severe problem (thankfully corrected by Norton Antivirus)
with my hard drive the past couple of days and the short version of this
unpleasantness follows:
Two occurrences of the following:
Location: C:\Program Files\Qualcomm\Eudora\PAIBGCPA.EXE
Virus Name: W95.Hybris.Gen.dr
Both cases (one on my D: drive as well--I always keep a copy of Eudora
copied over to my slave in case of a crash) were repairable (or so says
Norton); I subsequently ran SCANDISK /F and seem to have restored full
utility to my primary drive. At least I hope this is so--it was thrashing
itself something awful. Unbelievable to listen to, and an IBM at that. I
thought the world had come to an end. <g>
I fully realize this is not your fault in any manner, shape or form. This
stuff happens and all we can do is keep prepared as much as possible.
Crazies are among us and they know not what they do--or simply don't care.
I hope no one else was similarly infected.
Tris
< This message was delivered via the Olympus Mailing List >
< For questions, mailto:owner-olympus@xxxxxxxxxxxxxxx >
< Web Page: http://Zuiko.sls.bc.ca/swright/olympuslist.html >
|