[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

spam on CIS: sendmail exploit used commercially ?




Following the mail 'accident' I have caused a few days ago, I have noticed
that on my CIS account I sometimes get spam with weird headers. CIS uses
BSD machines as gateways (at least for telnet) on the Internet side.

The headers appeared to be sent by the spammer to hmiself ! I have no idea
how such a message got into my mailbox on CIS. It was not the only one
however. The From: header was the spammer, the To: too and the
Distribution also. I tried to send myself mail and the From: was myself
obviously (100310.2360@compuserve.com).

I have no idea what mailer they are using but I think they should take a
look at it...

Any ideas ? (I'm still tinkering with my mailer). 

Peter Lorand Peres
------------------
plp@actcom.co.il 100310.2360 on CIS (please use Internet address for mail)
http://ourworld.compuserve.com/homepages/plp

"The creed of Inland Revenue is simple: 'If we can bring one little smile to one
little face today - then somebody's screwed up somewhere' - David Frost

(Note: The above stands valid in all countries until proven wrong)