eitanc 2 Posted February 4, 2015 Share Posted February 4, 2015 Hello, I wish to ask that when you log an incident of an infected email - please add the email's full headers, to any possible alert/logging object - the GUI log, the email you send to the admin regarding the event and possibly to ESET for reputation scoring and research. It wil be nice if all of the above will be user controled, on/off, as part of the configuration GUI. These details will help us all in learning from the incident and possibly block future attacks with similar attributes. Thank you, Eitan Link to comment Share on other sites More sharing options...
rugk 397 Posted February 5, 2015 Share Posted February 5, 2015 (edited) Well if all the e-mail headers would be showed in the single-line log entry which is shown in the GUI you would see nothing, because the e-mail headers just wouldn't fit into this small one line. If you submit an email to ESET you should already send the headers too. In Microsoft Outlook you can do this by "dragging and dropping" the mail into the new mail. This way the original source of the mail will be sent. And last but not least: If you want to look at the headers you can just use the possibility in your mail client and show them. Edited February 5, 2015 by rugk Link to comment Share on other sites More sharing options...
eitanc 2 Posted February 6, 2015 Author Share Posted February 6, 2015 1. The display issue is really minor. it can be divided into seperate lines. 2. Depending on the NOD32 settings - the email can be deleted, so one cannot see the headers. even if the email is not deleted - the headers are archived "out of band" on the log. Can someone from Eset reply? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,074 Posted February 6, 2015 Administrators Share Posted February 6, 2015 Unfortunately, full email headers cannot be added to each alert for various reasons. Link to comment Share on other sites More sharing options...
Recommended Posts