We had another case of, "Chief MuckityMuck JoeBob of Smurf-corp mailed me a cranky note saying that I need to stop sending him viruses. I've been on vacation all week, and I didn't do it. Fix it," happen. As the knowledgeable reader is already aware, this latest virus forges the From: header. It happens. And our own Grand High SubMuckityMuck leaned on us to Fix It, as his good name is on the line.

*sigh* User education. E-mail is easily forged. If I remember right, every single e-mail worm since Klez that has reached any sort of notoriety has forged the From: header. It only makes sense from a virus-writer's point of view. Most AV systems are set to notify the 'sender' if a virus is detected. That way, stuff that doesn't forge the From: header gets fixed pretty quick. How do you get around it? Forge the From:. SMTP isn't hard to code, it was written in 1982 afterall.

So we had another conversation with our own managers locally who are the ones being leaned on. He wanted us to tell him, "we can do nothing," so he can go on up the management tree with, "we can do nothing, our experts said so," legitimately. So we did. And in the process vented a lot about the state of user education these days.