Re: [Full-Disclosure] defamatory joe job attack by botnet

From: Jean-Marie Monnier (kedves_at_attglobal.net)
Date: 05/25/04

  • Next message: Nick FitzGerald: "Re: [Full-Disclosure] VX: Old worm in new shoes (AntiQFX)" 
    To: full-disclosure@lists.netsys.com
Date: Tue, 25 May 2004 17:44:41 +0200

    I can only second Charles' and Isi's statements.... I sent a mail
    earlier this morning to the list, and it was bounced back to me by
    different engines. I made my case worse by underlining the fact that
    the body of the messages sent under my sp**fed identity were either
    advertising P*RN sites, or were plain SP*M for any kind of products..
    the full and correct spelling of P*RN and SP*M triggered also some
    sites to reject straight away my message ;-). Life is not easy, and it
    seems we ain't seen anything yet... oh well...:-)
     
    Jean-Marie Monnier

    Charles Richmond a écrit:

    >
    > On Jun 24, 2004, at 11:43 PM, lsi wrote:
    >
    >> I can report that not only is this activity continuing, but it is
    >> doing so under the names of ... well, me, at least - I have received
    >> several bounces indicating that my email address is being used as the
    >> "from" address.
    >
    >
    > The spammers are using addresses from bugtraq submissions
    > and other security lists also. Clearly it is to their advantage to
    > harass those of us who are at all active on the security and
    > anti-spam side. It took Verizon months to stop blocking based
    > on spoofed addresses and Barry Shein's "Software Tool & Die"
    > (std.com) is still blocking based on spoofed addresses.
    >
    > It behooves all of us to do our best to block actual spammers
    > and not their spoofed victims.
    >
    > Charles Richmond
    >
    > Implemented Integrated Systems Corporation http://www.iisc.com
    > O/S, I18N, Systems Development, Process and Integration Providers
    > cmr@iisc.com cmr@acm.org YIM:cmriisc http://www.iisc.com/cmr
    > 7B West St., Somerville, Ma. USA 02144 (781) 389 9777
    >
    > _______________________________________________
    > Full-Disclosure - We believe in it.
    > Charter: http://lists.netsys.com/full-disclosure-charter.html
    >

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Nick FitzGerald: "Re: [Full-Disclosure] VX: Old worm in new shoes (AntiQFX)"

    Relevant Pages

    • Re: Is predictable spam filtering a vulnerability?
      ... Reasonably intelligent folk can manage with an archive-and-report mechanism ... if the RECIPIENT has opted to silently ... totally bogus addresses won't get bounces (not that the mail system won't ... As an administrator of several mailing lists, ...
      (Bugtraq)
    • Re: (1) OE msgs stuck -again- in outboxs! (2) How to reduce or compress photo msgs?
      ... Thank you very much, Brian. ... The following bounces also come with the same attachment which I quoted ... upper limit on the number of recipients an individual message can have ... into smaller mailing lists. ...
      (microsoft.public.windows.inetexplorer.ie6.outlookexpress)
    • Re: Kernel list rejecting my email - braindead list
      ... We're not talking about isolated bounces. ... I am part of a lot of lists and I ... has as uch spam as this list does. ... Everyone is raving about the all-new Yahoo! ...
      (Linux-Kernel)
    • Re: OT: regex to find email
      ... >> all these regexes catch is unlikely to be exactly the set of all valid RFC ... > the perl faq is also required reading: ... September has dozens of bounces from no-longer-valid addresses that ... individually from the email containing big lists of bounced addresses. ...
      (comp.lang.python)