Re: Hi! (e-mail address spoofing)

To: Nate Bargmann <n0nb@networksplus.net>, "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: Re: Hi! (e-mail address spoofing)
From: Lee Elliott <LeeE@spatial.freeserve.co.uk>
Date: Fri, 02 Feb 2001 20:11:26 +0000
Message-id: <[🔎] 3A7B146E.36427ADD@spatial.freeserve.co.uk>
References: <[🔎] b55EkC.A.H4.Ciee6@murphy> <[🔎] 20010201175437.A24163@madduck.net> <[🔎] 20010201170459.C682@nomad.n0nb.ampr.org>

Nate Bargmann wrote:
> 
> I doubt it came from your domain as the original mail also had my ISP's
> domain on it.  I suspect some sort of address spoofing...
> 
> - Nate >>
> 
I actually received an M$ targeted virus this way - the sender spoofed
my domain but one of the recipients bounced it and I got the
undeliverable message.

The e-mail was received using Netscape Communicator 4.73

There was no 'text' message as such - just a script of some sort
(nothing I've ever used, so I don't recognise it) with M$ registry
entries embedded in it.  Fortunately, I don't run M$ on any of 'my'
personal stuff (obviously - Debian only:-), have specific 'users' for
net stuff and don't enable java or anything for e-mail, so it was just
so much gibberish text, but I suspect it may have executed in LookOut as
soon as it was opened.

LeeE

Reply to:

References:
- Hi!
  - From: "Lovely Johny" <John Lenon@murphy.debian.org>
- Re: Hi!
  - From: MaD dUCK <madduck@madduck.net>
- Re: Hi!
  - From: Nate Bargmann <n0nb@networksplus.net>

Prev by Date: Re: Voodoo Banshee ANYBODY?
Next by Date: Re: Printer Problem
Previous by thread: Re: Hi!
Next by thread: Re: Hi!
Index(es):
- Date
- Thread