Re: Possible Intrusion Attempt?

From: Andersson (no email) (devnull_at_pole-position.org)
Date: 05/26/03

  • Next message: Thomas Zimmerman: "Re: Possible Intrusion Attempt?" 
    Date: Mon, 26 May 2003 11:53:50 +0200
To: incidents@securityfocus.com

    Rob Shein wrote:
    > I'm a little fuzzy about this part...how do you prevent people from
    > accepting HTML mail, and considering how many mail clients out there send it
    > by default, what do you do when all of a sudden a large percentage of people
    > can't email you anymore?

    I'm yet to see a MUA that sends html without also sending a text
    alternative (not that I've done a comprehensive study). All mail I've
    ever received with ONLY html has been spam, and one may actually use
    that as (part of) spam detection.

    As a side note, Mozilla's "View/Message Body As/Plain Text" alternative
    is great. It does translate html to text if there is no text
    alternative. It doesn't connect to any external references (like
    1x1-pixel tracker pics). I've used this since I found out it was there,
    and I have had no problems at all. The "large percentage of people" is
    actually zero!

    /R

    ----------------------------------------------------------------------------
    *** Wireless LAN Policies for Security & Management - NEW White Paper ***
    Just like wired networks, wireless LANs require network security policies
    that are enforced to protect WLANs from known vulnerabilities and threats.
    Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

    To get your FREE white paper visit us at:
    http://www.securityfocus.com/AirDefense-incidents
    ----------------------------------------------------------------------------

  • Next message: Thomas Zimmerman: "Re: Possible Intrusion Attempt?"

    Relevant Pages

    • RE: Possible Intrusion Attempt?
      ... accepting HTML mail, and considering how many mail clients out there send it ... You should first stop allowing HTML email. ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)
    • RE: A question for the list...
      ... >> evolution of the network ... implement and enforce WLAN security policies ... >> enterprise WLANs. ... implement and enforce WLAN security policies to ...
      (Incidents)
    • Re: [ANNOUNCE] protocol watcher
      ... attack, which is known to be a SYN attack! ... wireless LANs require network security policies ... > that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)
    • RE: HTTPS Web site testing
      ... Subject: HTTPS Web site testing ... wireless LANs require network security policies ... that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown ...
      (Pen-Test)
    • Re: A question for the list...
      ... Just like wired networks, wireless LANs require network security policies ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)