El Viernes, 7 de Septiembre de 2007 21:57, Paul Lesniewski escribió:
> On 9/7/07, Christian Schmitz <[EMAIL PROTECTED]> wrote:
> > First:
> > This can happen for 2 reasons:
>
> Many more than that.
>
> > -keylogger into customer house.
> > -Vulnerabilitys into squirrelmail.
>
> - Non-SSL-encrypted
On 9/7/07, Christian Schmitz <[EMAIL PROTECTED]> wrote:
> First:
> This can happen for 2 reasons:
Many more than that.
> -keylogger into customer house.
> -Vulnerabilitys into squirrelmail.
- Non-SSL-encrypted logins sniffed
- Vuln that sniffs login info stored in browser
- User mistakes like no
First:
This can happen for 2 reasons:
-keylogger into customer house.
-Vulnerabilitys into squirrelmail.
You must work to determine what is happen.
If the customer have a keylogger, then the spammer have the data (password,
username). And you will have the same problem with all webmails progs. U
Matt wrote:
>> Do you have any proof of a virus logging in? Couldn't it just be plain ol'
>> keyboard logging and the the person who gets the logs (not your intended
>> users) sends out the spam manually? It's technically possible to write a
>> program that logs in automatically, using any kind o
Matt wrote:
> On 9/7/07, Chris Hoogendyk <[EMAIL PROTECTED]> wrote:
>
>> Matt wrote:
>>
Do you have any proof of a virus logging in? Couldn't it just be plain ol'
keyboard logging and the the person who gets the logs (not your intended
users) sends out the spam manually? It
On 9/7/07, Chris Hoogendyk <[EMAIL PROTECTED]> wrote:
>
>
> Matt wrote:
> >> Do you have any proof of a virus logging in? Couldn't it just be plain ol'
> >> keyboard logging and the the person who gets the logs (not your intended
> >> users) sends out the spam manually? It's technically possible to
On 9/6/07, Res <[EMAIL PROTECTED]> wrote:
> On Thu, 6 Sep 2007, Bill Landry wrote:
>
> > However, replying to the "To:" header is certainly not the default behavior
> > for
> > many e-mail clients. Mailman can be set to add a "Reply-To" header, so
> > maybe
> > there was some reason why the Squi
> Do you have any proof of a virus logging in? Couldn't it just be plain ol'
> keyboard logging and the the person who gets the logs (not your intended
> users) sends out the spam manually? It's technically possible to write a
> program that logs in automatically, using any kind of mail interface -
> Also, just as an FYI, Paul when someone top posts or bottom posts
> or does anything else that isn't set in stone or law... it's probably
> better to just let it go rather than go off about it. That has the
> potential to make people very very upset... and is what gives alot of the
> Linux
>> or turn off login_auto functionality and block all requests to
>> src/mailto.php.
>
> src/mailto.php doesn't exist.
"src/mailto.php" is part of SquirrelMail since 1.4.5 and 1.5.0. The OP is
using 1.4.4.
Sincerely,
Fredrik
--
>> or turn off login_auto functionality and block all requests to
>> src/mailto.php.
>
> src/mailto.php doesn't exist.
>
> However, again we are chasing the straw man (is that the right term to
> use here?). I'm being told to upgrade because of security, etc, etc
> yet that's not the issue..
>
> > That has the
> > potential to make people very very upset... and is what gives alot of
> > the Linux community a bad name.
>
> http://catb.org/~esr/faqs/smart-questions.html#keepcool
Ok.. that's fine.. as long as that's what you are operating under.. I
have no issues with that :)
--
12 matches
Mail list logo
