January 29, 2004

$250,000 bounty

Since monday, because of the MyDoom virus, I have been under attack by mail servers from all over the world that kindly send me hundred of bounced emails like:

This is an automatically generated Delivery Status Notification.
Delivery to the following recipients failed.
somename@somecompany.com

because of various reasons like exceeded quota, unknown recipient, virus detected.

To make things worse, some of these badly configured mail servers do nothing else than attaching back the virus infected file, contributing further to the chaos by spreading it more and increasing bandwith usage.

2 weeks ago I strengthened rules of SpamAssassin installed on my server to avoid most of these annoying commercial emails. I plan to add further rules to avoid all .scr, .pif and .exe or .zip with certain text content.

I would gladly make another rule for automatically sending an email to abuse@somecompany.com when I receive an email I never sent.

If you don't understand what's all the fuss about these viruses, please read this

SCO issued a $250,000 bounty for information leading to the arrests of the authors of MyDoom.

 
Posted by stephane at January 29, 2004 04:31 PM
Comments