Full Disclosure mailing list archives
RE: Mailing lists and unsolicited/malicious spam
From: "Todd Towles" <toddtowles () brookshires com>
Date: Fri, 26 Nov 2004 13:44:01 -0600
Yeah the last time I can remember that someone tried that on FD, was that some called exploit that had a IRC trojan in it...it was discovered after about 5 secs..lol
-----Original Message----- From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com] On Behalf Of Ron Sent: Friday, November 26, 2004 12:40 PM To: n3td3v Cc: full-disclosure () lists netsys com Subject: Re: [Full-disclosure] Mailing lists and unsolicited/malicious spam One thing to note, however, is that people who post on this list would tend to be the ones who know better than to listen to spam or to open viruses or to help out those pool old Nigerian Diplomats. n3td3v wrote:How many people are actually subscribed (on FD) and what are the general figures for subscribers for high profile mailinglists, has anyfigures ever been released? And would the theft of the listof e-mailssubscribed be of value to spammers? I think it would be, I hope FD admin is up to date with and keeping tracks of bugs as therest of us.If malicious hackers/script kiddies got hold of the list, Ithink theywould be able to attack a good percentage of inboxes withwhatever theysend. Weather it be porn spam or a phishing to takepasswords or if itbe malcious code to take advantage of POP mail clients via SMTP. I think already FD is targeted by spam/phishing hackers who wish to collect e-mail addresses for further exploration. Perhapsposting on FDcould be a security risk in itself (well not just FD butmailing listsonline in general) as far as POP mail clients and SMTP is concerned. (web-based e-mail has its own problems which usually don't have the risk of taking over computers like mail clients do. Usuallyweb-basede-mail is just at risk from xss/cookie disclosure/account theft, whereas malicious code sent to mail clients can take over whole computer systems) For those of you who already have a "mailing list only"e-mail addressand a seperate address for work related/corporate/companymatters, doyou see a different level of unsolicited spam, compared to the work address or other private e-mail address for friends and family? I'm thinking about setting up the same myself, just for experimental reasons! I think i'll find some differences between the two. Sorry if you don't care about anti-spam, but its something i'm interested in. Sorry to all the script kiddie hax0rs whodon't like meworking against you and your e-mail collecting bots! Plus, do FD admin and other high profile mailing lists havehoney potsor similar methods to catch FD/mailing list born spam? Ibelieve a bigmailing list can have its own domestic/internal spam,seperate from thegeneral internet who are not subscribed to the given mailing list or lists, and even different mailing lists having its own group of spammers targeting them, with its own nature of spam/phish/malicious code exploration. Thanks, n3td3v _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Mailing lists and unsolicited/malicious spam, (continued)
- Mailing lists and unsolicited/malicious spam n3td3v (Nov 26)
- Re: Mailing lists and unsolicited/malicious spam Ron (Nov 27)
- RE: Mailing lists and unsolicited/malicious spam Todd Towles (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam n3td3v (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam Valdis . Kletnieks (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam Andrew Farmer (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam Valdis . Kletnieks (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam devis (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam nicolas vigier (Nov 30)
- Re: Mailing lists and unsolicited/malicious spam Valdis . Kletnieks (Nov 27)
- Re: Mailing lists and unsolicited/malicious spam n3td3v (Nov 27)
- RE: Mailing lists and unsolicited/malicious spam Todd Towles (Nov 27)
- RE: Mailing lists and unsolicited/malicious spam Todd Towles (Nov 27)
- Mailing lists and unsolicited/malicious spam n3td3v (Nov 26)