On Nov 5, 2009, at 6:48 PM, Andrew Daviel wrote:
> I was wondering what other admin's experience has been with
> compromised
> SM accounts, and how spammers are able to obtain passwords.
Spear phishing... Your user gave it to them. Search for it in their
Sent mail. I expect you'll find it in
On Sat, 31 Oct 2009, Paul Lesniewski wrote:
(re. Forcing a logout )
> You can (could have) stopped this almost right away with MTA
> rate-limiting or by using the Restrict Senders plugin. The Squirrel
> Logger plugin could also have alerted you to the problem. If the
> attacker got the password
