The messages appear to have come through an SMTP relay at the domain of Ed King's e-mail address, but that does not mean they come from him or his machine. I am just thankful that they all came with Ed King as the sender so I could write a quick message rule and delete them.
Scott Nichol ----- Original Message ----- From: "Tom Myers" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, December 04, 2002 5:00 PM Subject: Re: Ed King? > > Chris Howard wrote: > > > Most versions of e-mail software now-a-days do not open .exe .vbs and other > > dangerous files immediately anymore. They now wait for the user to open > > them manually and even warn the user. Ed was probably using an archaic > > e-mail program or opened an infected file he recieved from someone else, > > prolly with the same message that we recieved. > > Do we actually know that Ed King's was the infected machine? We know that > it was using his return address consistently, so > (a) blocking emails "From" him stopped the flood, and > (b) it must have been from a machine where his email address was stored, and > (c) Norton identified it for me as w32.yaha.f@mm, > so it must have come from a Windows machine, but > > http:[EMAIL PROTECTED] ml says > > The From field is a randomly-selected email address and may not be the legitimate sender. > > (Just curious.) > > Tom Myers > > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
