Phishing net behaving strangely
Denis.Beauchemin at USHERBROOKE.CA
Fri Apr 8 18:54:45 IST 2005
[ The following text is in the "ISO-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
Julian Field wrote:
>>> Here is what I got:
>>> <a href="http_:_//_132_._210_._0_._0/"><font
>>> color="red"><b>MailScanner soupçonne le lien "126.96.36.199"
>>> d'être une tentative de fraude de la part de</b></font> pas le
>>> Which makes MS' message appear as a link. The message translates to:
>>> MS believes the link "188.8.131.52" to be a phishing fraud attempt
>>> from bad tag.
>>> Is this normal behaviour?
>> I just tried it again after changing MS' setup to English and the
>> results are the same: MS' warning is inside the link... so I guess it
>> is normal behaviour...
> The idea is to leave the link active, but make the warning message part
> of the link. So if it is a false alarm, they can still easily click on
> the link. They have to be made aware that what they are doing is
> potentially dangerous, but I don't (and shouldn't) actually stop them
> being able to follow the link.
It makes perfect sense but the result is somewhat intriguing
°v° Denis Beauchemin, analyste
/(_)\ Université de Sherbrooke, S.T.I.
^ ^ T: 819.821.8000x2252 F: 819.821.8045
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
[ Part 2, "S/MIME Cryptographic Signature" ]
[ Application/X-PKCS7-SIGNATURE 4.4KB. ]
[ Unable to print this part. ]
More information about the MailScanner