James Wilkinson wrote:
Remember rule one in spam-fighting: spammers *lie*. (And virus-writers
Yep.
Usually there'll be a line somewhat like
Received: from mail.ru ([80.197.104.24] RDNS failed) by smtp.example.com
(if your ISP is example.com) or
Yep. Clue: Reverse DNS failed.
Received: from [85.140.207.188] (helo=menu2email.com) by smtp.example.com
You can't trust the *name* that the "from" computer reports, which in
these cases is mail.ru or menu2email.com. (Remember, spammers lie).
Yep. I've done this once before, using the principles you just
outlined. But I was told I got misled, anyway.
[snip]
Compromised routers are possible, but unusual -- insecure Windows
computers are a much softer target.
This is my bet. Someone who has me on his email list is
compromised, and is spoofing my address.
Mike
--
p="p=%c%s%c;main(){printf(p,34,p,34);}";main(){printf(p,34,p,34);}
This message made from 100% recycled bits.
You have found the bank of Larn.
I can explain it for you, but I can't understand it for you.
I speak only for myself, and I am unanimous in that!
