lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <200310072154.h97LsC727092@netsys.com>
From: max at flebus.com (MaX Flebus)
Subject: Spam with PGP

>  I remember hearing this is another method for bypassing spam filters.
>Apparently some filters will pass e-mail with PGP signatures thinking it
>is legitimate. It is an interesting concept, though.
>
>  I think my favorite is still the jpgin an html enabled e-mail with
>seemingly valid information and links that is actually a link to an xss or
>pr0n site. Spammers are starting to use better methodologies and soon
>filtering options will be almost impossible. I find it amusing to see what
>they will do next, though.
>
>-William

Well, this reminds us that a spam filter, although definitely a good
thing, it's not the definitive solution, just like a firewall IMHO.
You can't bet too much on a purely automatic solution.
Anyway, again like firewalls, I'm not so pessimistic: completely
filtering out what you don't want could be, OK, impossible but filtering
out almost all, is what we really need.

MaX
-- www.flebus.com


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ