4.53.7: phishing fraud endless loop
Julian Field
MailScanner at ecs.soton.ac.uk
Thu May 4 09:54:25 IST 2006
On 4 May 2006, at 01:53, Jeff A. Earickson wrote:
> Gang,
>
> I sent Julian an example sendmail message (offlist) that caused
> 4.53.7 to
> go into an endless loop when I ran it in debug mode. This was
> a lucky coincidence; I normally run a new version of MS in debug
> mode one time before putting it into production, and this message
> just happened to be there.
>
> I got beaucoup syslog messages like:
>
> Found phishing fraud from www.evite.com claiming to be
> www.greetingstoall,afternearly3yearsbackinthestates,i'mheadingbacktolo
> ndonforwor in k43IWccm014788
>
> and the debug mode wouldn't end. I tried it both with the
> default "Web Bug Replacement =" setting and setting this to
> blank, both looped up. Anybody else seen this behavior?
> My setup: Solaris 10, sendmail 8.13.6, SA 3.1.1.
>
> Julian, what happens if some firewall gets between MailScanner
> and http://www.sng.ecs.soton.ac.uk/mailscanner/images/1x1spacer.gif ?
Then the HTML view of the page won't render quite as prettily, that's
all.
--
Julian Field
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
MailScanner thanks transtec Computers for their support.
More information about the MailScanner
mailing list