Educause Security Discussion mailing list archives
Re: Address harvesting of EDUCAUSE?
From: Matthew Dalton <Matthew.Dalton () ROCHESTER EDU>
Date: Fri, 25 Feb 2005 16:08:57 -0500
I would be curious to know if anyone that has not posted to the list before has received spam. Through a very simple script in UNIX, I was able to get 84 addresses from the mailing list archive. It seems that the spammer wouldn't necessarily need to be a member of the list. They only need a web browser. By the way, I ran the script from my home machine, just to be sure that it was accessible from outside of .edu sites. Perhaps at the least these archives should be restricted to only members. lynx -dump 'http://listserv.educause.edu/cgi-bin/wa.exe?A1=ind0502&L=security' | grep 'From:' | awk '{print $NF}' | sort -u -- ************************************************************************** |Matthew Dalton |Phone: (585)273-1721 | |ITS Security Group |Email: Matthew.Dalton () rochester edu | |University of Rochester | | |Rochester, NY 14620 | | ************************************************************************** On Fri, 25 Feb 2005, Dewitt Latimer wrote:
But the message wasn't sent to/through the list. They were individually addressed. We only ASSUME the vendor (who's probably squirming like hell right now) harvested the information from the list but you don't know that for a fact. -d ------------------------------ Dewitt Latimer, Ph.D. Deputy CIO and Chief Technology Officer The University of Notre Dame dewitt () nd edu -----Original Message----- From: The EDUCAUSE Security Discussion Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Theresa Semmens Sent: Friday, February 25, 2005 3:44 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Address harvesting of EDUCAUSE? Suggestion: Perhaps a message should be sent out by the moderator or administrator of the listserv reminding those on the list that it is for educational purposes only and commercial solicitation is not appropriate. Those who are using for that venue will be removed from the list. If you can't play nice, then you don't belong on the team. :-) Theresa Semmens, CISA IT Security Officer North Dakota State University IACC 210C Ph: 701-231-5870 E-mail: theresa.semmens () ndsu edu "Opportunity is missed by most people because it is dressed in overalls and looks like work." Thomas Edison -----Original Message----- From: The EDUCAUSE Security Discussion Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of David Bendtsen Sent: Friday, February 25, 2005 2:20 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Address harvesting of EDUCAUSE? This must be a targeted message. I am a vendor, and haven't received them. David Bendtsen -----Original Message----- From: The EDUCAUSE Security Discussion Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU]On Behalf Of Joel Rosenblatt Sent: Friday, February 25, 2005 1:08 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Address harvesting of EDUCAUSE? I received them also .. it might be interesting to know if everyone got it, or were they selective in some way. --On Friday, February 25, 2005 12:28 PM -0600 Dick Jacobson <Dick.Jacobson () NDSU NODAK EDU> wrote:I also received these and assumed they were merely SPAM. -- ----------------------------------------------------------------------- Dick Jacobson e-mail : Dick.Jacobson () ndsu NoDak eduJoel Rosenblatt, Senior Security Officer & Windows Specialist, AcIS Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033 http://www.columbia.edu/~joel ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/.
********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/.
Current thread:
- Re: Address harvesting of EDUCAUSE?, (continued)
- Re: Address harvesting of EDUCAUSE? Dick Jacobson (Feb 25)
- Re: Address harvesting of EDUCAUSE? Joel Rosenblatt (Feb 25)
- Re: Address harvesting of EDUCAUSE? David Taylor (Feb 25)
- Re: Address harvesting of EDUCAUSE? Dick Jacobson (Feb 25)
- Re: Address harvesting of EDUCAUSE? Manuel Amaral (Feb 25)
- Re: Address harvesting of EDUCAUSE? David Bendtsen (Feb 25)
- Re: Address harvesting of EDUCAUSE? Bill Kyle (Feb 25)
- Re: Address harvesting of EDUCAUSE? Theresa Semmens (Feb 25)
- Re: Address harvesting of EDUCAUSE? Joan Couse (Feb 25)
- Re: Address harvesting of EDUCAUSE? Dewitt Latimer (Feb 25)
- Re: Address harvesting of EDUCAUSE? Matthew Dalton (Feb 25)
- Re: Address harvesting of EDUCAUSE? Eric Pancer (Feb 25)
- Re: Address harvesting of EDUCAUSE? James Riden (Feb 25)
- Re: Address harvesting of EDUCAUSE? Peter Moody (Feb 25)
- Re: Address harvesting of EDUCAUSE? Mark Poepping (Feb 25)
- Re: Address harvesting of EDUCAUSE? Kay Sommers (Feb 25)
- Re: Address harvesting of EDUCAUSE? Stephen Bernard (Feb 26)
- Re: Address harvesting of EDUCAUSE? Kevin Shalla (Feb 28)
- Re: Address harvesting of EDUCAUSE? John Kristoff (Feb 28)
- Re: Address harvesting of EDUCAUSE? Scott Fendley (Feb 28)
- Re: Address harvesting of EDUCAUSE? Jeni Li (Feb 28)