9 May
2016
9 May
'16
8:59 a.m.
Hello!
You have a new message, please read
<http://contemporaryconcrete.co.za/hungry.php?4psrn>
julian at twinax.org
9 May
9 May
9:36 a.m.
Err what- I?m not clicking on that..
Sampsa.
On 9 May 2016, at 09:59, julian at twinax.org wrote:
Hello!
You have a new message, please read http://contemporaryconcrete.co.za/hungry.php
<http://contemporaryconcrete.co.za/hungry.php?4psrn>
julian at twinax.org <mailto:julian at
twinax.org>_______________________________________________
Hecnet-list mailing list
Hecnet-list at lists.sonic.net <mailto:Hecnet-list at lists.sonic.net>
https://lists.sonic.net/mailman/listinfo/hecnet-list
<https://lists.sonic.net/mailman/listinfo/hecnet-list>
9:40 a.m.
I don't know julian of twinax.org but I guess his mail has been
hijacked. He has been sending this spam before and to cctalk/cctech as
well.
/P
On Mon, May 09, 2016 at 10:36:21AM +0300, Sampsa Laine wrote:
Err what- I?m not clicking on that..
Sampsa.
> On 9 May 2016, at 09:59, julian at twinax.org wrote:
>
> Hello!
>
> You have a new message, please read http://contemporaryconcrete.co.za/hungry.php
<http://contemporaryconcrete.co.za/hungry.php?4psrn>
>
> julian at twinax.org <mailto:julian at
twinax.org>_______________________________________________
> Hecnet-list mailing list
> Hecnet-list at lists.sonic.net <mailto:Hecnet-list at lists.sonic.net>
> https://lists.sonic.net/mailman/listinfo/hecnet-list
<https://lists.sonic.net/mailman/listinfo/hecnet-list>
9:42 a.m.
How the hell does someone as theoretically techie as the people on this list get their
freaking email address compromised?
Then again I totally forgot I had bought 12 Bitcoins for about $200 back in like 2009. I
reinstalled the client since I found the wallet, they?re worth $5,500 today.
I?m having a good morning.
Sampsa
On 9 May 2016, at 10:40, Pontus Pihlgren <pontus at
Update.UU.SE> wrote:
I don't know julian of twinax.org but I guess his mail has been
hijacked. He has been sending this spam before and to cctalk/cctech as
well.
/P
On Mon, May 09, 2016 at 10:36:21AM +0300, Sampsa Laine wrote:
Err what- I?m not clicking on that..
Sampsa.
> On 9 May 2016, at 09:59, julian at twinax.org wrote:
>
> Hello!
>
> You have a new message, please read http://contemporaryconcrete.co.za/hungry.php
<http://contemporaryconcrete.co.za/hungry.php?4psrn>
>
> julian at twinax.org <mailto:julian at
twinax.org>_______________________________________________
> Hecnet-list mailing list
> Hecnet-list at lists.sonic.net <mailto:Hecnet-list at lists.sonic.net>
> https://lists.sonic.net/mailman/listinfo/hecnet-list
<https://lists.sonic.net/mailman/listinfo/hecnet-list>
8:31 p.m.
On Mon, May 9, 2016 at 3:42 AM, Sampsa Laine <sampsa at mac.com> wrote:
How the hell does someone as theoretically techie as
the people on this
list get their freaking email address compromised?
?Be careful with over arching statements. It's trivial to forge someone
else's email address. Yes, most of us set up our systems so that the
rcvr should do sender authentication, but not all receiving systems do, and
it's optional etc. So stuff happens. As someone with a 40+ year domain
name its still a problem - forgeries are ripe.
I think the better question is techie's should be able to recognize most
junk that get's through the filters. The good news is that most of it
does get stopped, but those messages that do make it thru, we need to be
"always watching."
Clem?
10:08 p.m.
On 9 May 2016, at 21:31, Clem Cole <clemc at
ccc.com> wrote:
On Mon, May 9, 2016 at 3:42 AM, Sampsa Laine <sampsa at mac.com <mailto:sampsa at
mac.com>> wrote:
How the hell does someone as theoretically techie as the people on this list get their
freaking email address compromised?
?Be careful with over arching statements. It's trivial to forge someone else's
email address. Yes, most of us set up our systems so that the rcvr should do sender
authentication, but not all receiving systems do, and it's optional etc. So stuff
happens. As someone with a 40+ year domain name its still a problem - forgeries are
ripe.
I think the better question is techie's should be able to recognize most junk that
get's through the filters. The good news is that most of it does get stopped, but
those messages that do make it thru, we need to be "always watching."
Actually my bad - SMTP is so broken it?s not even funny.
I remember we were having a few beers in the Students Union during my MSc and I figured
that since there?s no requirement to define how much data a message contains, it would be
pretty easy to just open 100+ connections to a mail server and keep feeding it crap until
it falls over. So off to the testing lab we went.
In 2004 with 100 connections on 100 Mbps LAN, I think it took sendmail ABOUT 4 minutes.
Sampsa
10:36 a.m.
Nope, you should not. Someone got hacked, or got a virus or something.
HECnet only allows posts from subscribed members...
Johnny
On 2016-05-09 09:36, Sampsa Laine wrote:
Err what- I?m not clicking on that..
Sampsa.
--
Johnny Billquist || "I'm on a bus
|| on a psychedelic trip
email: bqt at softjar.se || Reading murder books
pdp is alive! || tryin' to stay hip" - B. Idol
On 9 May 2016, at 09:59, julian at twinax.org
<mailto:julian at twinax.org>
wrote:
Hello!
*You have a new message, please
read* http://contemporaryconcrete.co.za/hungry.php
<http://contemporaryconcrete.co.za/hungry.php?4psrn>
julian at twinax.org <mailto:julian at twinax.org>
_______________________________________________
Hecnet-list mailing list
Hecnet-list at lists.sonic.net <mailto:Hecnet-list at lists.sonic.net>
https://lists.sonic.net/mailman/listinfo/hecnet-list
3:45 p.m.
New subject: new message
On May 9, 2016, at 4:36 AM, Johnny Billquist <bqt
at softjar.se> wrote:
Nope, you should not. Someone got hacked, or got a virus or something. HECnet only allows
posts from subscribed members...
Not necessarily; that depends on how thorough the list server is. A substantial fraction
of this sort of criminal email has forged sender addresses. I occasionally get bounce
messages sent to me in response to forgeries that clearly (from their forwarding headers)
did not originate on my system, or even in my country.
paul
3:55 p.m.
New subject: new message
On May 9, 2016, at 9:45 AM, paul_koning at dell.com
wrote:
I just looked at the headers of the offending message: it certainly looks like a forged
source address. It is not entirely clear which of the forwarding headers are real, but
possibly an ISP in Sweden is part of the path. Open relay somewhere?
paul
On May 9, 2016, at 4:36 AM, Johnny Billquist
<bqt at softjar.se> wrote:
Nope, you should not. Someone got hacked, or got a virus or something. HECnet only allows
posts from subscribed members...
Not necessarily; that depends on how thorough the list server is. A substantial fraction
of this sort of criminal email has forged sender addresses. I occasionally get bounce
messages sent to me in response to forgeries that clearly (from their forwarding headers)
did not originate on my system, or even in my country.
3462
days inactive
3462
days old
8 comments
6 participants
participants (6)
-
bqt@softjar.se -
clemc@ccc.com -
julian@twinax.org -
Paul_Koning@Dell.com -
pontus@Update.UU.SE -
sampsa@mac.com