Re: hacker??

From: N. Miller (nsm_at_blackhole.aosake.net)
Date: 11/06/03 

Date: Wed, 5 Nov 2003 20:40:21 -0800

In article <084a01c3a41a$9c5cfab0$a301280a@phx.gbl>,
squirtlesmom@hotmail.com says...
> I want to give a great big hug to both of you. I searched
> and found the entries on 10/31 and did it. As problems
> go, this was not a huge one, but not knowing that much
> about computers I did not know if it would grow and
> besides that - it was really pissing me off. :)

Is 'squirtle' as 'kawaii' as his name sounds? Ah, never mind that. But,
unless you are inviting private contact by email, you might want to
reconsider using a real email address in posts to this group. Although you
find it by HTTP service, many of us get her by NNTP service. The groups are
carried publicly on a slough of NNTP servers, and harvested regularly for
"fresh, new" email addresses by spammers, not to mention that nasty Swen
bug!

I haven't tested the Microsoft CDO for Windows 2000 interface, lately, so I
don't know if you can execute a "Reply" and get my working address. But I
use a bad posting address. I used to use <koko@soko.invalid>, but the new
one actually points to a loopback address, so a badly configure SMTP engine
will try to eat the mail itself, as it tries to find me!

You can form such a "spam-and-virus-proof" address by using the .invalid TLD
for any logical looking address, or using "example.com" as your domain name.
Both are reserved as non-working names for live testing on the Internet; and
work very well to block such nastiness. Microsoft is supposed to be
preloading <anonymous@discussions.microsoft.com>, which is not configured as
a hostname on the Internet. Not as nasty as <*@blackhole.aosake.net> because
it doesn't have an MX record configured to loopback; but any of those
example domains will cause the malicious SMTP delivery to fail.

But the address you used will probably now become a Swen-and-Spam magnet. 

-- 
Norman
~Win dain a lotica, En vai tu ri, Si lo ta
~Fin dein a loluca, En dragu a sei lain
~Vi fa-ru les shutai am, En riga-lint

Relevant Pages

  • Re: hacker??
    ... >I haven't tested the Microsoft CDO for Windows 2000 ... >one actually points to a loopback address, ... >a hostname on the Internet. ... >example domains will cause the malicious SMTP delivery to ...
    (microsoft.public.security.virus)
  • Re: per machine instead of per users
    ... users would not have access to the Internet (read: ... Management of the loopback (hint: need to use replace mode.....not merge! ... >> appropriate domain user account objects members of that group. ... >> to access the Internet) by this GPO to a separate OU then simply link ...
    (microsoft.public.win2000.group_policy)
  • 6500 hang on loopback test...Help !
    ... loopback test-" line without moving to the next line. ... I have replaced the Ethernet card and now the watch-net-all openboot command ... still hangs at the loopback test and it hangs whether or not the ethernet ... As internet communications are not secure we do not accept legal ...
    (SunManagers)
  • RE: Utility needed to scan for shares and permissions.
    ... There are programs on the Internet that will do this for you. ... information as it violates security principles. ... Utility needed to scan for shares and permissions. ... Microsoft CDO for Windows 2000 ...
    (microsoft.public.win2000.networking)
  • RE: No packets received
    ... Common issue with the spam and malware on the Internet. ... Mode with Networking and see if that works. ... Microsoft CDO for Windows 2000 ... The LAN Connection window shows packets being sent but not being ...
    (microsoft.public.win2000.networking)