Kjetil Torgrim Homme wrote:

> [Alan J. Flavell]:
>
>>And has someone got a large shovel to get rid of these damned
>>Mydoom-variant nondelivery reports that are getting sent to our
>>postmaster address?
>
>
> I wish... but first I wish we had a working AV. I got my first copy of
> at 12:45 UTC, but Sophos didn't have an updated signature file until
> 16:31. and it still doesn't recognise some variants of it! (I just
> _assume_ ZIP files which contain files named "message.html [80
> more spaces].exe" are malware.)
>
> 9 hours and counting -- that's pretty bad, I think. I'd be interested
> to hear how fast Sophos' competitors issued new virus signatures.
> --
> Kjetil T.
>
>
> --
>
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim
details at http://www.exim.org/ ##
>
>

Well, I know Mcafee's dailydats had it when we got hit at 10:00am local
time (UTC-6). ClamAv probably had it shortly also, but I don't know. I
haven't been hit with it yet. I just looked in my virusmails dir and I
have a few copies of Gibe, one of Bagle, and one of Netsky/SomeFool.

To date I don't have a MyDoom.o instance on the machine. As much as I
respect ClamAV I'm really thinking I'm going to put the mcafee unix
virusscan on the system again, to provide an extra layer of protection.



--
-- Dan

--

## List details at http://www.exim.org/mailman/listinfo/exim-users Exim details
at http://www.exim.org/ ##