NoOp wrote:
On 08/20/2011 12:32 AM, Mike Scott wrote:
(intentionally top-posted)
It's probably a false alarm, but David Barlow's email (below) rang alarm
bells as it came through my mail server, which removed an attachment as
possibly a security hazard. People may like to take appropriate care.
...
The attachment is a text file consisting of:
[DEFAULT]
BASEURL=http://www.clip-art.com/index.php
[InternetShortcut]
URL=http://www.clip-art.com/index.php
IDList=
[{000214A0-0000-0000-C000-000000000046}]
Prop3=19,2
Nothing nefarious there. That said, if would have been better to simply
post the url instead.
With a .url extension, if that file was double-clicked in Windows it
would open the default web browser at that address - which could be used
to trick the user into visiting a malicious site. I guess Mike's mail
scanner is just warning that it has the potential to do something nasty.
--
-----------------------------------------------------------------
To unsubscribe send email to [email protected]
For additional commands send email to [email protected]
with Subject: help
