Jump to content

CreationX

Members
  • Content Count

    5
  • Joined

  • Last visited

Everything posted by CreationX

  1. In response to a recent black-listing by SPAMCOP of our domain. Background: We currently use Sophos Antivirus to protect our PC's and email from known viruses. All email sent to our organisation is swept at the mail gateway for viruses. If an email containing a virus is detected the sender is notified with the following: a) To re-send the email without the virus. Check their machine for viruses. A link is provided to assist. With the MyDoom WORM (and others like it) our email server has seen an increased amount of email traffic containing VIRUSES. In response to an infected email our mail server has responded with the standard virus notification. As a result our domain has been blacklisted by SPAMCOP. The explanation and sample text provided by SPAMCOP clearly shows the Subject: "Virus Notification" for each and every one of the so-called spam email's. The Answer, or is it? The simple answer to this would be to disable the automatic virus notification. This is something we have devoted a huge amount of discussion to over the past few days. We have decided against disabling the virus notifications for the following reasons: a) Our links to emergency services such as Fire & Rescue, Police & Paramedics. Confirmation / Courtesy a senders email was received therefore allowing them to re-send a virus free email. c) With today’s society relying heavily on email it would be un-realistic of us to delete an email, received from another and not notify the sender. d) The amount of traffic our IT helpdesk would receive in relation to 'lost' email would be unsustainable. Whilst we should not 'rely' on email the truth is most of us do. As an IT Engineer and end-user support person I see this every day. On a side note our organisation strongly supports the Anti-spam Message. We would like to have our domain removed from the blacklist and an explanation from SPAMCOP as to what steps are being taken to resolve these incorrect listings. I am keen to hear your thoughts on this topic. Has anyone experienced a similar incident? Do you think automatic virus notifications are spam? What can be done to stop incorrect black-listings of this type?
  2. More effort needs to be made to inform SpamCop users of SpamCop policy. Specifically at the point a user 'submits' spam notification to SpamCop. It takes only a second for an uninformed user to click submit / send but may take hours even days to resolve incorrect listings by SpamCop. You owe it to your users and supports to get this right. Again thanks for your suggestions, we are currently reviewing the implementation of this.
  3. So assuming an innocent person is accused of sending you a virus why would you not provide them with a link to clean their machine? I would consider that a courtesy. Providing them with a link 'offers' them the chance to identify the virus and either update their failing antivirus software or simply install one. Its about taking that extra step to not only inform someone of a virus but to offer some assistance in its removal. In saying that have a reserved opinion about sending notifications in the first place, primarily because these notifications may be sent to an innocent person. MWTyson Thanks for your informed post. Please allow me a little time to digest all that you have presented. I appreciate all your typin You have really added value to this topic. I see your point. However in the context of antivirus notifications being branded advertising it is the ISP's or email solution providers who configure these antivirus notifications, just like its the ISP's who configured the SPAMCOP notifications. In saying that I would like to leave the point of advertising alone as it does nothing to contribute to the original post. Feel free to comment though. I just don’t feel we are going to get any constructive results from that topic
  4. The above quote refers to Antivirus Companies advertising in their automated responses. But this from SPAMCOP: AND This: Please note I have removed the IP addresses and names from the above examples. In all reality not having a link to SPAMCOP would provide greater frustrations for someone trying to troubleshoot a delivery problem of this type. Your still advertising though?
  5. Well I'm back and my thoughts exactly, this post has created some great answers. I personally thank you all for your time and efforts. After reading your responses I now feel I have some real ammunition to present to our corporate IT department & senior management regarding this topic. After considering your posts I agree with your common view that Antivirus notifications constitute spam. With the MyDoom worm seriously affecting the quantity and therefore legitimacy of these notifications the side effects (spam, increased server load, etc) far out-weigh any usefulness they may have provided. Your time is near virus notification...!! One of the concerns presented by senior management, for not disabling virus notifications, is the amount of and reliance on email communications between our organisation and the State Emergency Services. Whilst I agree we cannot rely on email and this viewpoint is clearly communicated to staff, a great deal of communications between ourselves and emergency services is via email. Obviously any incident where ones life or property are under threat other reliable, fault tolerant communications are used. Thank you for your suggestions. I wish to explore these options in a greater detail and specifically how to implement them in our IT environment. Presenting options to management (along with my personal feelings about spam) will really strengthen the argument for switching virus notifications off. Would you please explain the theory behind rejecting mail with SMTP codes? Where would this be configured: on the mail server or the mail sweeper? On a side note the following link, posted on Slashdot recently, provides some interesting reading on this topic. Anti-Virus Companies: Tenacious Spammers
×