What is the list policy on posting binaries ? and a suggestion for a wiki.

Hi Folks,


Happy New Year and successful snorting to all! 

The subject says it all.  Do we actually have a policy? 

Yesterday our (somewhat draconian but very successful) email filter
quarantine an email from the list that had a tarball attached.  In the
tar ball was a linux executable and this triggered the filter.  We block
*all*  executable both incoming and outgoing on our MTAs (for some
fairly broad definition of all -- we recently allowed VAX executables
since some app generates files that match the sig -- we decommissioned
our last VAX at least 15 years ago so we figure the risk was justified ;).

If you really need to distribute executable files I believe that the
appropriate means of doing so is to post a link to a web site where it
can be downloaded.  Don't have access to a web site where you can put
stuff?  Well may be Matt and in merry band ;) could add a wiki to the
bleeding threats web site (or is there one there already?).

BTW when we implemented the filter we also provided our users with a web
drop box for transferring files that might trigger the filter -- works
for both inbound and outbound files:

https://webdropoff.auckland.ac.nz/  Files dropped here are virus checked
unless they are encrypted.  ( The filter also blocks password protected
zip files and a few other encrypted formats -- but not PGP).

We have had a lot of positive feed back, both from our users and folk
outside about this service.

Cheers, Russell