|
Re: [spf-discuss] SPF, DKIM, and NIH
2009-10-19 05:22:10
--On 16 October 2009 19:06:02 -0400 Sanford Whiteman
<sandy(_at_)cypressintegrated(_dot_)com> wrote:
How do the spammers know? Well, as soon as they infect a PC, they
get all the addresses from the M$ AddressBook and phone home.
+1 on the prevalence of this maneuver. OE and OL are the most common
targets since they are by far the most popular locally installed MUAs,
but the same can be done with plenty of other software as well. My The
Bat! ADBs are trivially extractable. Once you have admin access to the
machine, reading such lightly encoded or plain-text data is trivial.
The only thing that could make it difficult is the MUA getting an
exclusive lock on the files; even then, a trojan can sniff POP3 and
SMTP streams directly.
But not, presumably, TLS, imaps, pop3s and smpts protected streams? Which
is why it's nice to see many clients now using SSL/TLS by default. Apple
Mail and Outlook are examples.
In all, I was surprised to see these tactics treated as improbable.
-- Sandy
-------------------------------------------
Sender Policy Framework: http://www.openspf.org [http://www.openspf.org]
Modify Your Subscription: http://www.listbox.com/member/
[http://www.listbox.com/member/]
Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/
Powered by Listbox: http://www.listbox.com
--
Ian Eiloart
IT Services, University of Sussex
01273-873148 x3148
For new support requests, see http://www.sussex.ac.uk/its/help/
-------------------------------------------
Sender Policy Framework: http://www.openspf.org [http://www.openspf.org]
Modify Your Subscription: http://www.listbox.com/member/
[http://www.listbox.com/member/]
Archives: https://www.listbox.com/member/archive/735/=now
RSS Feed: https://www.listbox.com/member/archive/rss/735/
Powered by Listbox: http://www.listbox.com
| <Prev in Thread] |
Current Thread |
[Next in Thread>
|
- Re: [spf-discuss] SPF, DKIM, and NIH, (continued)
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Stuart D. Gathman
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Sanford Whiteman
- Re: [spf-discuss] SPF, DKIM, and NIH,
Ian Eiloart <=
- Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart
- Re: [spf-discuss] SPF, DKIM, and NIH, David MacQuigg
- Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart
- Spear Phishing (was: [spf-discuss] SPF, DKIM, and NIH), Steven Dorst
- Re: Spear Phishing (was: [spf-discuss] SPF, DKIM, and NIH), Stuart D. Gathman
- RE: Spear Phishing (was: [spf-discuss] SPF, DKIM, and NIH), Steven Dorst
- [spf-discuss] Tracking userids --was: SPF, DKIM, and NIH, Alessandro Vesely
- Re: [spf-discuss] Tracking userids --was: SPF, DKIM, and NIH, Ian Eiloart
- Re: [spf-discuss] Tracking userids --was: SPF, DKIM, and NIH, Alessandro Vesely
- Re: [spf-discuss] Tracking userids --was: SPF, DKIM, and NIH, Ian Eiloart
|
| Previous by Date: |
Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart |
| Next by Date: |
Re: [spf-discuss] Tracking userids --was: SPF, DKIM, and NIH, Ian Eiloart |
| Previous by Thread: |
Re: [spf-discuss] SPF, DKIM, and NIH, Sanford Whiteman |
| Next by Thread: |
Re: [spf-discuss] SPF, DKIM, and NIH, Ian Eiloart |
| Indexes: |
[Date]
[Thread]
[Top]
[All Lists] |
|
|