[lug] Linux Virus Firewall

[Glenn Ashton]

> Yes and no. I've seem similar installations (actually i've set up
> one) but i don't really see the need for Outlook once the Unix
> mailserver is running. I know, Outlook offers some proprietary
> features but (IMHO) most if if not all of these could be replaced
> by with free software using open protocols.

The need for Outlook, like all needs for end-user software is based on
management.  If I could give everyone something different I would.

> I personally don't think that virus scanners on the gateway MTA
> are worth spending much time. A vew thoughts about this:

I agree in part.  If you simply could filter attachments and send the
mail containing them to a Linux "dead letter" office and open them from
the safety of a Linux box that would save of lot of headaches.  Forward a
message to the admin and the end user that questionable mail has been
interepted and placed on a "safe system".

> The best place to detect malicious code is the machine that's 
> about to execute it. I've seen pretty good sandbox systems
> running under WinOS for a decent price.

Yep, and in an ideal world I wouldn't have any Outlook in my environment.
The key thing is that even with updated Antivirus stuff, users will open
attachments.  Even when they know better.  

No matter how hard you educate users, it just doesn't take sometimes.
Using a cattle prod is probably not acceptable either.

I was just trying to see if anyone had tried something like this to shield
a Windows environment from the evils of Windows viruses using the power of
Linux.

Some of us have to use Linux where we can and still have to suffer in the
Windows world.

-Glenn Ashton