OK, this is probably a stupid question, but bear with me. I started getting these emails tonight. I've gotten 28 since I left for work at 6pm. I blame Kinko's, but that is another story. The question that I have is this...
How did I get one from my email address? I use Mac OS 9.2.2, so the virus shouldn't be able to send mail from my computer, right? Or I am screwed since I use Microsoft's Outlook Express?
Sorry for the stupid question.
(Just got another one, make that 29!)
arewaaaaaaaaaa?????
OE on mac, thats gotta suck...it could be other viruses 2, some take advantage of OE and not nessasaraly a windoze hole so replication could theoreticly occur on os9 (or X) if using OE espeasialy if it is a port and not a custom platform build(even then M$ would shurly leave bugs in as the mac people expect the same "high" level of stability as WIN32 users)
but, realy if it was a htm based deal u could be screwed, do u keep your own address in your outlook mailing list or address book whatever the mac version calls it?
better not say any moe lest this thread be sent to genious bar
but there is 1 more thing..
WTF give your REAL email to kinkos, just say somethin like
but, realy if it was a htm based deal u could be screwed, do u keep your own address in your outlook mailing list or address book whatever the mac version calls it?
better not say any moe lest this thread be sent to genious bar
but there is 1 more thing..
WTF give your REAL email to kinkos, just say somethin like
Well, i had to give them my real address because I was sending them files to output online, so they would need to get in contact with me at some point...
And my address is in my OE address book.
I would love to use panther, but I can't afford to replace my beige G3 at the moment
Disclaimer: *Some of what is written below may be wrong, or simply be in use already ? I don't know.
What would really be a big squash to the spammers, is if Microsoft totally rebuilt their mail programs, for Windows and Mac. I say Microsoft vecause these things are written for Windows.
For example*, if not in existence already, make a mandatorily, (nice word, self), on Bayesian spam filter in Outlook, Entourage, etc., and turn them on by default.
Secondly, secure the address book stuff on Windows, (and OS X, if not already ? I dunno), so a program can't access it and use it for spoofing. Then the shit like MyDoom can't pretend to be from someone you know.
Make it so that attachments do not get opened ever, unless the user specifically tells the program to first save the attachment to disk, and then opens it up through Windows. i.e. Attachments are completely devoid of any function whatsoever until it is specifically saved.
In short, Microsoft need to seriously overhaul their software, secure certain parts of it, and that might make it that bit harder for spammers to succeed in junk mail and virus success.
I have had a quick look at the OS X Address Book API, and it isn't secure at all, but the act of writing a program to spoof, and sending emails to spread and what not, is not really that easy to do, without the user knowing. Though it is possible.
So in conclusion: secure address books, make atachments so that they must be told manually to save itself to the disk, (a la OS X's Mail), so the user may open it by double-clicking later, (the user is in control, somewhat).
Comments
Originally posted by Stroszek
OK, this is probably a stupid question, but bear with me. I started getting these emails tonight. I've gotten 28 since I left for work at 6pm. I blame Kinko's, but that is another story. The question that I have is this...
How did I get one from my email address? I use Mac OS 9.2.2, so the virus shouldn't be able to send mail from my computer, right? Or I am screwed since I use Microsoft's Outlook Express?
Sorry for the stupid question.
(Just got another one, make that 29!)
arewaaaaaaaaaa?????
OE on mac, thats gotta suck...it could be other viruses 2, some take advantage of OE and not nessasaraly a windoze hole so replication could theoreticly occur on os9 (or X) if using OE espeasialy if it is a port and not a custom platform build(even then M$ would shurly leave bugs in as the mac people expect the same "high" level of stability as WIN32 users)
but, realy if it was a htm based deal u could be screwed, do u keep your own address in your outlook mailing list or address book whatever the mac version calls it?
better not say any moe lest this thread be sent to genious bar
but there is 1 more thing..
WTF give your REAL email to kinkos, just say somethin like
JOE@myfavoritefakeurl.net
{edit GET panther AND USE MAIL OR ONTOROGE}
Originally posted by a_greer
arewaaaaaaaaaa?????
but, realy if it was a htm based deal u could be screwed, do u keep your own address in your outlook mailing list or address book whatever the mac version calls it?
better not say any moe lest this thread be sent to genious bar
but there is 1 more thing..
WTF give your REAL email to kinkos, just say somethin like
JOE@myfavoritefakeurl.net
{edit GET panther AND USE MAIL OR ONTOROGE}
Well, i had to give them my real address because I was sending them files to output online, so they would need to get in contact with me at some point...
And my address is in my OE address book.
I would love to use panther, but I can't afford to replace my beige G3 at the moment
It's impossible for the worm to work on Macs because it's a PC executable file. Just blame it on your friends.
What would really be a big squash to the spammers, is if Microsoft totally rebuilt their mail programs, for Windows and Mac. I say Microsoft vecause these things are written for Windows.
For example*, if not in existence already, make a mandatorily, (nice word, self), on Bayesian spam filter in Outlook, Entourage, etc., and turn them on by default.
Secondly, secure the address book stuff on Windows, (and OS X, if not already ? I dunno), so a program can't access it and use it for spoofing. Then the shit like MyDoom can't pretend to be from someone you know.
Make it so that attachments do not get opened ever, unless the user specifically tells the program to first save the attachment to disk, and then opens it up through Windows. i.e. Attachments are completely devoid of any function whatsoever until it is specifically saved.
In short, Microsoft need to seriously overhaul their software, secure certain parts of it, and that might make it that bit harder for spammers to succeed in junk mail and virus success.
I have had a quick look at the OS X Address Book API, and it isn't secure at all, but the act of writing a program to spoof, and sending emails to spread and what not, is not really that easy to do, without the user knowing. Though it is possible.
So in conclusion: secure address books, make atachments so that they must be told manually to save itself to the disk, (a la OS X's Mail), so the user may open it by double-clicking later, (the user is in control, somewhat).
Simple(ish). m.