Marcus Rueckert wrote:
err at least the virus scanning stuff should be handled in the MTA. In general i dont like any proxies that modify content for me. there are too many ways to get things wrong.
I agree, mostly, but there is the interesting case where a new worm or spammed trojan gets past the MTA virus-scanner because detection hasn't yet been added. In this case, it might be useful to scan the message when it's being read, which may be sufficiently later for virus-scanners to have caught up (though of course, your desktop AV should also do the job if it's updated frequently enough). The same probably also applies to spam-filtering when relying on things like DNS block-lists.
Chris
-- --+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+- Christopher Wakelin, c.d.wakelin@reading.ac.uk IT Services Centre, The University of Reading, Tel: +44 (0)118 378 8439 Whiteknights, Reading, RG6 2AF, UK Fax: +44 (0)118 975 3094