[Esa-l] SECURITY_NOTIFY_RECIPIENT

John D. Hardin jhardin at wolfenet.com
Mon Apr 16 19:33:29 PDT 2001 

On Mon, 16 Apr 2001, rcooper wrote:

> When enabling SECURITY_NOTIFY_RECIPIENT the recipient does indeed
> get a message notifying them of the filtered email.  
> Unfortunately this does not include a transcript of the email
> headers etc of whom or where the message came from.  Thus the
> recipient is left confused as to who generated the message.  Is
> there a way to enable this feature to send more information?

Well, yes, you could cut-and-paste the headers part from the
administrator notify into the recipient notify - see the attached
(totally untested quickie) diff.

If you wanted only certain headers it would be correspondingly more
complex.

> This feature is nice because the recipient can take corrective
> measures with the person sending the email that was filtered.  
> But not if they have no idea who the message came from.  While I
> understand in a number of cases it may be hard to tell, in some
> cases Im sure the recipient will recognize who the email came
> from,

I didn't think of this because I (as postmaster) tend to handle that
for my users.

> Finally, if an attachment in the email is poisoned, cant we just
> use NOTIFY_RECIPIENT to just forward the message without the
> attachment? Inserting our security message at the beginning
> notifying the recipient we stripped the attachment for security
> reasons would be good, but allowing them to get the rest of the
> message which is not a threat would be nice as well.

1.x can't, 2.x will be able to strip attachments.

> Believe me, it bugs the hell out of end users who know they never
> received an email from person(s) completely unknown.

:) Psy warfare.

> So my question I guess is are there any plans for now or in the
> future to enhance this feature.  In theory its a useful function
> provided we can get more information from it to satisfy the end
> users curiosity.

Yes, 2.0 will have much better end-user reporting capabilities.

--
 John Hardin KA7OHZ   ICQ#15735746   http://www.wolfenet.com/~jhardin/
 jhardin at wolfenet.com      pgpk -a finger://gonzo.wolfenet.com/jhardin
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
  An entitlement beneficiary is a person or special interest group
  who didn't earn your money, but demands the right to take your
  money because they *want* it.
                                  -- John McKay, _The Welfare State:
                                     No Mercy for the Middle Class_
-----------------------------------------------------------------------
   1296 days until the Presidential Election
-------------- next part --------------
A non-text attachment was scrubbed...
Name: san130pre1.diff.gz
Type: application/octet-stream
Size: 686 bytes
Desc: 
Url : http://ga.impsec.org/pipermail/esd-l/attachments/20010416/f39292bc/san130pre1.diff.obj

More information about the esd-l mailing list