Simple is definitely best, but I would recommend including something to
check for
HTTP_X_FORWARDED_FOR to take care of the chance the Bad Guy is using a
proxy of some kind that would mask the source IP.
Tremaine
On Wed, 2002-05-01 at 12:57, CHRIS GRABENSTEIN wrote:
Or better yet, just make use of one of the many free hit counters on
the
internet. Many will log all kinds of info about your visitors such
as IP,
browser, OS, etc. You could make your own server collect all this,
but why
not make use of resources already available? Just paste the HTML
source code
for the counter into the email. As soon as he renders the e-mail,
you've got
him.
|-----Original Message-----
|From: Laurence Brockman [mailto:[EMAIL PROTECTED]]
|Sent: 29 April 2002 20:31
|Cc: [EMAIL PROTECTED]
|Subject: Re: Yahoo Account Security
|
|
|Why don't you send an email message to your yahoo account with
|some embedded html (or JavaScript?) in it (Such as a pic on
|your home server or something).... or some friend that has
|apache running. Pick out a picture that no one else will ever
|load, and wait for him to open the message. You should get a
|line in the apache access logs with his source IP address...
|
|Not sure if this would work, but it might be worth a shot....
|anyone with more experience with HTML email stuff think this
|would work?
|
|Laurence
--
