Re: Re: DML virus spreading - EVERYBODY READ!

From: Christopher Orr (chris@manual-override.net)
Date: Wed Aug 20 2003 - 22:22:36 EDT

Next message: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Previous message: Chris Reck: "Re: injectors"
In reply to: Walt Felix: "Re: DML virus spreading - EVERYBODY READ!"
Next in thread: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Reply: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Hey all,
For those running procmail as their MDA, this recipe works great to
keep users from opening the file on accident. It just puts .txt at the
end of the filename, so when it gets double clicked, notepad comes up.

:0
*^Content-type: (multipart/mixed|application/octet-stream)
{
     :0 B
     *^Content-Disposition: (attachment|inline);
     *filename=".*\.(vbs|scr|pif)"
     {
        :0 fbw
        |/usr/bin/sed -e
's/\([nN][aA][mM][eE]=".*\.[vV][bB][sS]\)"/\1.txt"/' \
                      -e
's/\([nN][aA][mM][eE]=".*\.[sS][cC][rR]\)"/\1.txt"/' \
                      -e
's/\([nN][aA][mM][eE]=".*\.[pP][iI][fF]\)"/\1.txt"/'
     }
}

Next message: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Previous message: Chris Reck: "Re: injectors"
In reply to: Walt Felix: "Re: DML virus spreading - EVERYBODY READ!"
Next in thread: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Reply: andy levy: "Re: Re: DML virus spreading - EVERYBODY READ!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Fri Feb 06 2004 - 11:46:48 EST