Yes, it actually did work. I use Pine 4.05, and have not changed mailcap,
like what most people would have done (not changed it). Fortunately, like
I said, he never actually got my passwords because I was not logged in as
root. I have my root account forwarded to a user-level account. He did
email root at my domain.
-=>Jim Roland
"Never settle with words what you can settle with a flamethrower."
--Anonymous
On Tue, 16 May 2000, Alex Belits wrote:
> Date: Tue, 16 May 2000 00:39:43 -0700 (PDT)
> From: Alex Belits <[EMAIL PROTECTED]>
> To: Jim Roland <[EMAIL PROTECTED]>
> Cc: [EMAIL PROTECTED], [EMAIL PROTECTED],
[EMAIL PROTECTED]
> Subject: Re: URGENT!!!!!!! Pine hacking attack: DOS attack,
log file attached! (fwd)
>
> On Tue, 16 May 2000, Jim Roland wrote:
>
> > I'm sure some of you might have been hit with something like this, but
> > this is the first time that in my 3 years of using Pine, has Pine been
> > used to attempt to hack into my system. This is a little too scary, and a
> > little too close to similar attacks against Microsoft email software.
>
> Did it actually work? What version of pine do you use? Do you use
> charset expansion in mailcap (as described in
> http://www.netspace.org/cgi-bin/wa?A2=ind9902b&L=bugtraq&D=0&P=1418 and
> http://www.washington.edu/pine/pine-info/1999.02/msg00056.html )?
>
> --
> Alex
>
> ----------------------------------------------------------------------
> Excellent.. now give users the option to cut your hair you hippie!
> -- Anonymous Coward
>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
