yes, I was thinking about this question some more, and was about to raise the issue of macros (though I didn't remember the name...) It'd be pretty terrible if a malicious person uploaded a file that then messed up a lot of users!
Let's see, for the occasions when a .doc file is really helpful, and if I know the person who wants it as an attachment, can I as administrator add it, after that person has posted the initial message and emailed me the file for attachment? I guess I can just try this, but thought I'd ask...
In a way, it could be easier if users could tell what type of file the attachment was, but - on the other hand - they wouldn't have any way of knowing whether a .doc file was trustworthy, would they? (Of course, current antivirus software would presumably take care of the old problems, but not a new one, huh?)
Thanks - Tony
