> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Larry Seltzer > Sent: Friday, 18 June 2004 11:31 p.m. > To: [EMAIL PROTECTED] > Subject: RE: [Full-Disclosure] Spam Solution > > >>Spammers already have and use the technology to circumvent > all this, so they don't > even need to invent new tricks. > > SMTP AUTH cracking and using the ISP account? Not that it > can't and won't be done, but > I'm aware of no actual examples. Could you cite one please?
Well, spammers are trying to crack accounts through SMTP AUTH for quite a long time - this was mentioned in news more than once. Check following threads: >From Incidents mailinsg list: http://marc.theaimsgroup.com/?t=106615376000003&r=1&w=2 >From NANOG: http://www.merit.edu/mail.archives/nanog/2003-10/msg00569.html Bojan Zdrnja CISSP _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
