W3C home > Mailing lists > Public > www-webont-wg@w3.org > September 2003

RE: Careful what you open - I'm getting worms from webont members

From: Peter Crowther <Peter.Crowther@melandra.com>
Date: Wed, 10 Sep 2003 10:02:05 +0100
Message-ID: <DDBBD1E00935D144AB9563D57EF98D62533A@raccoon.melandra.net>
To: "Charles White" <Charles.White@networkinference.com>, "Jim Hendler" <hendler@cs.umd.edu>
Cc: "webont" <www-webont-wg@w3.org>

> From: Charles White [mailto:Charles.White@networkinference.com] 
> I have gotten at least a couple copies of one of the recent 
> viruses from webont members, Jim H. being one of them.
> So be careful what you open.

I believe Sobig, in particular, spoofs its From address.  There is a
very high chance that these were not sent from those WG members, but
from the virus/worm on another system pretending to be them.  Not that
this helps much when you're trying to work out whether to open the email
or not!

We've had considerable problems on a different list where the list
address was used as the From address.  Cue hundreds of messages to the
list saying 'your message was blocked at the gateway'...

Roll on the day of 100% free, 99.999% available digital signatures :-/.

		- Peter
Received on Wednesday, 10 September 2003 05:02:07 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:58:02 GMT