Full Disclosure mailing list archives
RE: [inbox] Re: Re: E-Mail viruses
From: "Patrick Nolan" <p.nolan () comcast net>
Date: Fri, 5 Mar 2004 19:27:13 -0800
Valdis.Kletnieks () vt edu On Fri, 05 Mar 2004 13:36:10 CST, Curt Purdy said:... Legitimate senders would rename the file, be it .exe .doc .jpg, indicate in the body of the message what the true extension is, and the receiver merely renames it...So let's see.. the same bozos who read the text part of the virus, get the password, and use that to unzip the rest of the virus won't read the text part, get the rename to do, and.....
I was thinking a similar thought -- it's just the same bypass; renaming the extension as using other text in the body to extract the attachment. In a good scenario, the recipient checks with the sender via phone to verify what was sent. Regards, Patrick Nolan _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Re: E-Mail viruses, (continued)
- Re: Re: E-Mail viruses Cael Abal (Mar 05)
- RE: [inbox] Re: Re: E-Mail viruses Curt Purdy (Mar 05)
- Re: E-Mail viruses Cael Abal (Mar 05)
- RE: [inbox] Re: Re: E-Mail viruses Chris DeVoney (Mar 05)
- Re: E-Mail viruses starwars (Mar 05)
- Re: Re: E-Mail viruses Nick FitzGerald (Mar 06)
- Re: Re: E-Mail viruses Valdis . Kletnieks (Mar 08)
- Re: Re: E-Mail viruses Nick FitzGerald (Mar 08)
- RE: [inbox] Re: Re: E-Mail viruses Curt Purdy (Mar 09)
- Re: [inbox] Re: Re: E-Mail viruses gadgeteer (Mar 05)
- RE: [inbox] Re: Re: E-Mail viruses Patrick Nolan (Mar 05)
- Re: [inbox] Re: Re: E-Mail viruses Nick FitzGerald (Mar 05)
- RE: [inbox] Re: Re: E-Mail viruses Aditya, ALD [Aditya Lalit Deshmukh] (Mar 07)
- RE: [inbox] Re: Re: E-Mail viruses Nick FitzGerald (Mar 07)
- Re: [inbox] Re: Re: E-Mail viruses Jorge Daza (Mar 07)
- Re: [inbox] Re: Re: E-Mail viruses Nick FitzGerald (Mar 07)
- Re: [inbox] Re: Re: E-Mail viruses Sam Sharpe (Mar 08)
- RE: [inbox] Re: E-Mail viruses Curt Purdy (Mar 05)