Full Disclosure mailing list archives

Re: Spam with PGP

From: Shawn McMahon <smcmahon () eiv com>
Date: Tue, 7 Oct 2003 11:05:55 -0400

On Tue, Oct 07, 2003 at 09:21:39AM -0400, Security Administrator said:


 I remember hearing this is another method for bypassing spam filters.
Apparently some filters will pass e-mail with PGP signatures thinking it
is legitimate. It is an interesting concept, though.


Spamassassin needs to check the sig, and only give it points if it's
valid.

Yes, I realize this means many "legit" sigs won't get points.  Spam
sucks.


-- 
Shawn McMahon     | Let every nation know, whether it wishes us well or ill,
EIV Consulting    | that we shall pay any price, bear any burden, meet any
UNIX and Linux    | hardship, support any friend, oppose any foe, to assure
http://www.eiv.com| the survival and the success of liberty. - JFK

Attachment: _bin
Description:

Current thread:

Re: Spam with PGP, (continued)
- - - Re: Spam with PGP Jonathan A. Zdziarski (Oct 07)
    - Re: Spam with PGP Devin Nate (Oct 07)
    - Re: Spam with PGP Jonathan A. Zdziarski (Oct 07)
    - Re: Spam with PGP Devin Nate (Oct 07)
    - Re: Spam with PGP Jonathan A. Zdziarski (Oct 08)
    - Re: Dealing with spam (was: Spam with PGP) Paul Russell (Oct 08)
    - Re: Spam with PGP Kiko Piris (Oct 07)
    - Re: Spam with PGP Jonathan A. Zdziarski (Oct 07)
    - RE: [inbox] Re: Spam with PGP Curt Purdy (Oct 08)
- Re: Spam with PGP Security Administrator (Oct 07)
  - Re: Spam with PGP Shawn McMahon (Oct 07)
    - Re: Spam with PGP Sebastian Niehaus (Oct 07)
- Break Macromedia Activation Alex (Oct 07)
- RE: Spam with PGP Andy Wood (Oct 07)
- RE: Spam with PGP Brown, Randy (InfoSec) (Oct 07)
  - Re: Spam with PGP Dave Howe (Oct 07)
- Re: Spam with PGP DAN MORRILL (Oct 07)
- RE: Spam with PGP Brian Dinello (Oct 07)
  - Re: Spam with PGP Thomas Binder (Oct 07)
- Re: Spam with PGP MaX Flebus (Oct 07)
  - Re: Spam with PGP Curt Purdy (Oct 08)

(Thread continues...)