On Sat, 25 Sep 2010 05:42:19 +0200 Karsten Bräckelmann <guent...@rudersport.de> wrote:
> The problem is, that your ISP accepts plain text authentication over > plain text, un-encrypted channels. One of them must be encrypted, at > the very least if you gonna sign it. Otherwise it's too easy to > eavesdrop and get the credentials. > > Well, unless you trick your victim to otherwise tell you, or can > guess a weak password. Encryption doesn't help in that case. A rather > common source for 419 scammers and some general spam. I've seen spam > sent by cracked accounts, personally [1]. It does happen. And it > seems to be the source of your sample. What's odd is that it's authenticated to his own account.
