-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 http://www.f-secure.com/v-descs/flea.shtml
Even signature files aren't to be trusted in HTML e-mails now. Not that I've ever trusted HTML e-mails anyway. Quote from the advisory: "Flea activates when an infected email message is opened. At this point, the worm connects to a web site in Spain (a private page under terra.es), and silently downloads and executes a JavaScript code available in a web site. This JavaScript code will download an another script written in Visual Basic Script and execute it. This code will contain the actual worm code." "The Visual Basic script code changes Internet Explorer settings so, that any URL entered into address bar without a specific protocol prefix (usually "http:" part in the beginning of the URL) will be directed into worm code, causing that the system will be reinfected." I know it has nothing to do with Mandrake Linux and very little to do with the focus of this list but... It's more work for those of us that volunteer as "cleaners" and more aggravation for everyone connected to any network. Especially you admins. <sigh> Charlie - -- Edmonton,AB,Canada User 244963 at http://counter.li.org Cooker on kernel 2.4.22-18mdk 12:13:50 up 22:50, 1 user, load average: 0.15, 0.17, 0.10 You're dead, Jim. -- McCoy, "Amok Time", stardate 3372.7 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/mW2aG11CaRuZZSIRAoVQAJ9W0zNnPsX+bVAP7fMGI7cNGbGGjQCgmtyv the9jD0FEEsdh2Wy6W+Azc8= =E+Ao -----END PGP SIGNATURE-----
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com