We use a mail rule that redirect mails that contain executable files …It now looks as that was an excellent idea … we got several mails with the Bugbear.B virus before there was anything to find about this virus on the anti-virus-sites. we stayed ‘clean’.
I’ve got another suggestion for mail rules : there should be a way to detect double extensions, it would be helpful.