I've kinda lost track of the "spoofing" thread (deleted all the messages after reading them) so I'm not sure this post is even on-topic. But I believe we're talking about some spam that recently appeared on this list.
If the original post is as I remember it, this is a 'doze worm you're dealing with. It made the security news a few weeks ago. It forges email headers, so you can't believe anything in the headers (except those added after the message left the infected machine). With the cooperation of the infected machine's upstream provider it might be possible to figure out just whose machine it is, but it just ain't worth the effort. Further, most upstream providers aren't interested in spending the time. Another item that has been in the security news in the last few weeks or months: spammers are now using worms to infect machines to send spam. Same thing: their worms install a simple SMTP server on a 'doze box and the unsuspecting user becomes a spammer. Since 'doze can never really be secured, I'm afraid this is going to be an ongoing problem as long as millions of clueless people continue using it on Internet-connected machines. Ken _______________________________________________ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
