Re: Bogus Email

Date: 11/05/01

Date: Mon, 5 Nov 2001 07:50:13 +0100 (CET)
From: <>
To: Incidents Mailing List <>
Subject: Re: Bogus Email
Message-ID: <>

On Sat, 3 Nov 2001 wrote:

> For whatever reason, it seems that I have become the target (or masqueraded
> source as the case may be) of an email prank.
> Someone originating from SERVER4 ( []) is
> sending out the email portion of the Nimda virus with *my* email address as
> the FROM.

That is normal behaviour for nimda in fact. It grabs a random email
address from your mailbox and uses it as faked "From:" address.


All email send to me is bound to the rules described on my homepage.
	    Don't meddle in the affairs of sysadmins,
	    for they are subtle and quick to anger.

---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: