[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Spam Solution

To: "'Larry Seltzer'" <larry@xxxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Spam Solution
From: "Bojan Zdrnja" <Bojan.Zdrnja@xxxxxx>
Date: Sat, 19 Jun 2004 19:42:16 +1200

 

> -----Original Message-----
> From: full-disclosure-admin@xxxxxxxxxxxxxxxx 
> [mailto:full-disclosure-admin@xxxxxxxxxxxxxxxx] On Behalf Of 
> Larry Seltzer
> Sent: Friday, 18 June 2004 11:31 p.m.
> To: full-disclosure@xxxxxxxxxxxxxxxx
> Subject: RE: [Full-Disclosure] Spam Solution
> 
> >>Spammers already have and use the technology to circumvent 
> all this, so they don't
> even need to invent new tricks.
> 
> SMTP AUTH cracking and using the ISP account? Not that it 
> can't and won't be done, but
> I'm aware of no actual examples. Could you cite one please?


Well, spammers are trying to crack accounts through SMTP AUTH for quite a
long time - this was mentioned in news more than once.

Check following threads:

From Incidents mailinsg list:
http://marc.theaimsgroup.com/?t=106615376000003&r=1&w=2

From NANOG:
http://www.merit.edu/mail.archives/nanog/2003-10/msg00569.html


Bojan Zdrnja
CISSP

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Spam Solution
  - From: Larry Seltzer

References:
- RE: [Full-Disclosure] Spam Solution
  - From: Larry Seltzer

Prev by Date: [Full-Disclosure] User auto added to Outlook Express contacts
Next by Date: RE: [Full-Disclosure] Spam Solution
Previous by thread: Re: [Full-Disclosure] Spam Solution
Next by thread: RE: [Full-Disclosure] Spam Solution
Index(es):
- Date
- Thread