RE: email security issue

From: Jay D. Dyson (jdyson_at_treachery.net)
Date: 06/11/03 

Date: Wed, 11 Jun 2003 14:28:42 -0700 (PDT)
To: Security-Basics List <security-basics@securityfocus.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 10 Jun 2003 Shar wrote:

> A website I own has had the main email address identity stolen.
> Someone from somewhere in the world is sending out spam around the
> world. This has been going on since Sunday. I am trying to stop this
> but I have been unable to read the header for the information I need.
> Can anyone help me with this?

        Please send the e-mail with full headers to the list. Many of us
can deduce the point of origin and with whom you should lodge your
complaint. (If you're not sure what I mean by full headers, please
identify which mail client you use and I can provide steps on how to
display said headers.)

        In the interim, place a link on your web site (toward the top is
best) which explains that your site has been victimized by those filthy
spammers. When the time is appropriate, you can provide further technical
details.

        I empathize with your situation. I had one site that was vhosted
on my network used as a spammer's "from" address. Suffice it to say that
when the smoke cleared, the spammer was over there...and over there...and
over there...and over there...

- -Jay

   ( ( _______
   )) )) .-"There's always time for a good cup of coffee"-. >====<--.
 C|~~|C|~~| (>----- Jay D. Dyson -- jdyson@treachery.net -----<) | = |-'
  `--' `--' `Red meat isn't bad for you, fuzzy green meat is.' `------'

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (TreacherOS)
Comment: See http://www.treachery.net/~jdyson/ for current keys.

iD8DBQE+558ONlg1oZSC9mkRAkOQAJ9Z3vwBrNPvmn4mAwo2mQsT2QXyQACdE3GA
5MEGd0RRjtsPRYaTVbKVZz0=
=NAtH
-----END PGP SIGNATURE-----

---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------

Relevant Pages

  • RE: email security issue
    ... often missing, wrong (forged headers or ... > are open or closed SMTP servers. ... that an experienced fellow like myself should be seeking employment ... Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! ...
    (Security-Basics)
  • Re: [opensuse] Test - Do Not Respond
    ... option is configured in the Accounts section's Receiving tab for the ... fetched messages on server" check-box. ... So I can't set it to only read headers that contain opensuse.org? ... reading mail locally with mail client. ...
    (SuSE)
  • Re: [SLE] unsusbcribe process
    ... reading and the supressing the headers (The bits that HEAD the email ... This isn't about defining what mail client a person uses or should use. ... headers-based process to punish all UIMCs (Users of Inferior Mail ...
    (SuSE)
  • Re: FC11 , Deleting Dragon-Player
    ... But when I click on a attached wmv file VLC won't play ... I have to "save As",then play them from my home with VLC. ... the mail client doesn't identify the ... Have a look at the message source, and see what headers are there just ...
    (Fedora)
  • Re: Look at these update from M$ Corporation.
    ... >> spammers are becoming more adept at forging sender addresses, ... > Don't tell me you have never heard of Received: headers? ... So, my mails are sent ...
    (Debian-User)
Loading