>Our LAN Security has looked at this idea, but came up empty, or at least, unsatisfied. Here's another idea, that my LAN Security team finally just released & implemented, and we may get WSH back now, as well (cc to Bret):
>
>Our LAN people are "now screening all incoming RAS/web-email attachments for the following types:" (imagine a big list of about 25 extensions here of all possible virus vehicles), and quarantining and examining every one twice daily. Those that are clearly acceptable will be sent along, and others will be destroyed (if obvious virus) or the recipient will be contacted to determine content. The process will be almost fully automated eventually, they hope.
>
>This is how all the viruses get in, of course, from outside, so I think it's a good approach. It all sounds pretty sensible, especially since it will mean getting WSH back to use.

I think they're taking a reasonable approach here, and I too hope it works. For myself, if I ever got an email, either here or at home, with an attachment that had a scripting extension, I sure wouldn't run the thing without looking at the file (code) beforehand. What happened with the ILOVEYOU virus was that people were unaware of what the files were. My philosophy is that if I don't know, I'm not taking any chances. Unfortunately, the folks that didn't share this are responsible for spreading it.