[68854] in North American Network Operators' Group
RE: Strange message possibly through nanog mail server
daemon@ATHENA.MIT.EDU (Thor Larholm)
Wed Mar 17 17:09:30 2004
Date: Wed, 17 Mar 2004 14:08:35 -0800
From: "Thor Larholm" <thor@pivx.com>
To: "william(at)elan.net" <william@elan.net>, <nanog@merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu
> From: william(at)elan.net [mailto:william@elan.net]=20
> I Just received this. I would like to check if others=20
> have received it and did it indeed come through nanog mailist
It came through NANOG, delivered from a Hotmail account that accepted it
from 198.26.130.36. Yes, that is a military IP, and most definitely not
the first time that spammers have relayed emails through compromised
military machines.
Spammers broke federal law long before the YOU-CAN-SPAM act.
For some reason, Peter Schroebel was CC'ed. You can read more about him
at
http://www.spamhaus.org/rokso/listing.lasso?-op=3Dcn&spammer=3DPeter%20Sc=
hro
ebel%20-%20SMS/Fullport
Character attacks such as this one are pretty common against
anti-spammers, we also had one attempted at Brian Bruns just days ago
here on NANOG.
Regards
Thor Larholm
Senior Security Researcher
PivX Solutions
24 Corporate Plaza #180
Newport Beach, CA 92660
http://www.pivx.com
thor@pivx.com
Phone: +1 (949) 231-8496
PGP: 0x5A276569
6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569
PivX defines "Proactive Threat Mitigation". Get a FREE Beta Version of
Qwik-Fix
<http://www.qwik-fix.net>=20
