From: John DiMarco (jdd@cs.toronto.edu)
Date: Wed Jan 18 2006 - 10:44:20 EST
Dear Sun Managers,
An email worm is sending worm-tainted mail messages claiming to be from me to
Sunmanagers. They purport to contain various images. Happily, our mailing
list software strips out the payload, so the worm won't propagate via us, but
I've been bombarded by messages from list members about them. Some of these
messages have been pretty nasty.
There's no point in sending me email about this -- these worm-tainted
messages didn't come from me or any of my machines. I'm well aware of them,
because I'm being deluged by bounce messages and complaints.
Please recognize -- email is like postal mail in that anyone can write
anything they want, e.g. a false sender address, and so long as the
destination address is correct, the message will be delivered. Just because
a message says it is from me doesn't necessarily mean it really is. In this
case, an email worm, probably W32/Nyxem-D,
http://www.sophos.com.au/virusinfo/analyses/w32nyxemd.html, has gotten onto a
couple of Windows boxes and selected a couple of email addresses out of
someone's address book or mailbox, one to send itself to (in this case,
sunmanagers) and one to claim it is from (in this case, me).
Unfortunately, there's nothing I can do to stop the messages from being sent
out -- I don't control the worm-infested machines where they're originating.
In the meanwhile, Bill and I are looking at ways to block them at the list
server, and we will do that as soon as we determine the best way of
proceeding.
Regards,
John
-- John DiMarco <jdd@cs.toronto.edu> Office: SF3302B IT Director Phone: 416-978-5300 Department of Computer Science, University of Toronto Fax: 416-978-1931 http://www.cs.toronto.edu/~jdd _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:38:33 EDT