Come on guys, someone that is on the list has a virus. And it grabs the List address out of the address book and used yours to spoof the sender. It happens, a lot.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Doug White Sent: Wednesday, July 14, 2004 12:29 PM To: [EMAIL PROTECTED] Subject: Re: [Full-Disclosure] RE: Full-Disclosure digest, Vol 1 #1767 - 14 msgs Here is the header information for virus mails being sent via this list: Received: from netsys.com (netsys.com [199.201.233.10]) by GULF.clickdoug.com (Postfix) with ESMTP id 278DC3E015E for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 11:07:27 -0500 (CDT) Received: from NETSYS.COM (localhost [127.0.0.1]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with ESMTP id i6EEYGQ16074; Wed, 14 Jul 2004 10:34:16 -0400 (EDT) Received: from joes.org ([208.233.210.176]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with SMTP id i6EEUgu14485 for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 10:30:44 -0400 (EDT) To: "Full-disclosure" <[EMAIL PROTECTED]> From: "Llevier" <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="--------tmaveblraynfmadnmhze" Subject: [Full-Disclosure] Re: Hello Sender: [EMAIL PROTECTED] Errors-To: [EMAIL PROTECTED] X-BeenThere: [EMAIL PROTECTED] X-Mailman-Version: 2.0.12 Precedence: bulk List-Unsubscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Id: Discussion of security issues <full-disclosure.lists.netsys.com> List-Post: <mailto:[EMAIL PROTECTED]> List-Help: <mailto:[EMAIL PROTECTED]> List-Subscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Archive: <http://lists.netsys.com/pipermail/full-disclosure/> Date: Wed, 14 Jul 2004 10:27:40 -0500 ====== Received: from netsys.com (netsys.com [199.201.233.10]) by GULF.clickdoug.com (Postfix) with ESMTP id D58263E015C for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 03:13:37 -0500 (CDT) Received: from NETSYS.COM (localhost [127.0.0.1]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with ESMTP id i6E7TUQ16965; Wed, 14 Jul 2004 03:29:30 -0400 (EDT) Received: from ruh-swcc-msw.net (mail.swcc.gov.sa [212.100.206.132]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with SMTP id i6E7Q1u15873 for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 03:26:02 -0400 (EDT) To: "Full-disclosure" <[EMAIL PROTECTED]> From: "Shaunige" <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="--------jiqpfbyhhjciusdmjpwb" Subject: [Full-Disclosure] Re: Yahoo! Sender: [EMAIL PROTECTED] Errors-To: [EMAIL PROTECTED] X-BeenThere: [EMAIL PROTECTED] X-Mailman-Version: 2.0.12 Precedence: bulk List-Unsubscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Id: Discussion of security issues <full-disclosure.lists.netsys.com> List-Post: <mailto:[EMAIL PROTECTED]> List-Help: <mailto:[EMAIL PROTECTED]> List-Subscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Archive: <http://lists.netsys.com/pipermail/full-disclosure/> Date: Wed, 14 Jul 2004 10:26:01 +0300 ===== Received: from netsys.com (netsys.com [199.201.233.10]) by GULF.clickdoug.com (Postfix) with ESMTP id 97B9C3E015D for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 02:49:36 -0500 (CDT) Received: from NETSYS.COM (localhost [127.0.0.1]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with ESMTP id i6E6h8Q04361; Wed, 14 Jul 2004 02:43:08 -0400 (EDT) Received: from ruh-swcc-msw.org (mail.swcc.gov.sa [212.100.206.132]) by netsys.com (8.11.6p2-2003-09-16/8.11.6) with SMTP id i6E6ebu03582 for <[EMAIL PROTECTED]>; Wed, 14 Jul 2004 02:40:38 -0400 (EDT) To: "Full-disclosure" <[EMAIL PROTECTED]> From: "Shaunige" <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="--------lpxiftyeswptpaibquna" Subject: [Full-Disclosure] RE: Incoming Msg Sender: [EMAIL PROTECTED] Errors-To: [EMAIL PROTECTED] X-BeenThere: [EMAIL PROTECTED] X-Mailman-Version: 2.0.12 Precedence: bulk List-Unsubscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Id: Discussion of security issues <full-disclosure.lists.netsys.com> List-Post: <mailto:[EMAIL PROTECTED]> List-Help: <mailto:[EMAIL PROTECTED]> List-Subscribe: <http://lists.netsys.com/mailman/listinfo/full-disclosure>, <mailto:[EMAIL PROTECTED]> List-Archive: <http://lists.netsys.com/pipermail/full-disclosure/> Date: Wed, 14 Jul 2004 09:40:37 +0300 ===== Doug ====================================== Our Anti-spam solution works!! http://www.clickdoug.com/mailfilter.cfm ====================================== ----- Original Message ----- From: "Holcomb, Kevin" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, July 14, 2004 11:50 AM Subject: [Full-Disclosure] RE: Full-Disclosure digest, Vol 1 #1767 - 14 msgs : This makes no sense.. YOur saying I emailed a virus? The bank firewall will not allow me to email a virus I dont think. : : Thanks, : : Kevin Holcomb _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
