Thanks. Now I need more aspirin. Ken Barber ([EMAIL PROTECTED]) wrote: > >I've kinda lost track of the "spoofing" thread (deleted all the >messages after reading them) so I'm not sure this post is even >on-topic. But I believe we're talking about some spam that >recently appeared on this list. > >If the original post is as I remember it, this is a 'doze worm >you're dealing with. It made the security news a few weeks ago. > >It forges email headers, so you can't believe anything in the >headers (except those added after the message left the infected >machine). With the cooperation of the infected machine's >upstream provider it might be possible to figure out just whose >machine it is, but it just ain't worth the effort. Further, most >upstream providers aren't interested in spending the time. > >Another item that has been in the security news in the last few >weeks or months: spammers are now using worms to infect machines >to send spam. Same thing: their worms install a simple SMTP >server on a 'doze box and the unsuspecting user becomes a >spammer. > >Since 'doze can never really be secured, I'm afraid this is going >to be an ongoing problem as long as millions of clueless people >continue using it on Internet-connected machines. > >Ken > >_______________________________________________ >EuG-LUG mailing list >[EMAIL PROTECTED] >http://mailman.efn.org/cgi-bin/listinfo/eug-lug >
-- Bob Crandell Assured Computing When you need to be sure. [EMAIL PROTECTED] www.assuredcomp.com Voice - 541-689-9159 FAX - 541-463-1627 Eugene, Oregon _______________________________________________ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
