wtf is a cyber ID?
Larry
----- Original Message -----
From: clug-talk-requ...@clug.ca
To: clug-talk@clug.ca
Sent: Saturday, 31 January, 2015 1:00:04 PM
Subject: clug-talk Digest, Vol 122, Issue 4
Send clug-talk mailing list submissions to
clug-talk@clug.ca
To subscribe or unsubscribe via the World Wide Web, visit
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
or, via email, send a message with subject or body 'help' to
clug-talk-requ...@clug.ca
You can reach the person managing the list at
clug-talk-ow...@clug.ca
When replying, please edit your Subject line so it is more specific
than "Re: Contents of clug-talk digest..."
Today's Topics:
1. Re: Honeypot anyone? (Mel Walters)
2. Re: Honeypot anyone? (John Jardine)
----------------------------------------------------------------------
Message: 1
Date: Fri, 30 Jan 2015 14:38:09 -0700
From: Mel Walters <melwalt...@telus.net>
To: CLUG General <clug-talk@clug.ca>
Cc: public Calgary UNIX talk <calgaryu...@cuug.ab.ca>
Subject: Re: [clug-talk] Honeypot anyone?
Message-ID: <1422653889.6006.1.ca...@telus.net>
Content-Type: text/plain; charset="UTF-8"
On Fri, 2015-01-23 at 15:13 -0700, Greg King wrote:
> I got a call today from someone who claimed to be with the "Canada Public
> Safety Agency" saying my "cyber id" had been traced to spam emails and he
> needed access to my PC to check it. He gave me a name (probably bogus) and a
> phone number of an actual federal government agency
> http://www.publicsafety.gc.ca/index-eng.aspx but his caller id didn't match
> the number. I told him off and hung up. I'm thinking this was a missed
> opportunity to fire up a honeypot and let the caller take control of it and
> delve into what he was trying to do.
>
> Has anyone done this? I've googled around and see there a some open source
> distros in this area and am leaning towards Stratagem. I have no idea how
> much work it is to support one of these or if I will get any useful data from
> it, other than the satisfaction of screwing with the scammers. I'd be
> interested in hearing others experience with honeypots.
>
> BTW I called the government agency and there must be a lot of this going on
> because their recorded message says that if you got a call from them to
> ignore it - it is a phishing attempt, and to report it to the anti fraud
> centre which I did
> http://www.antifraudcentre-centreantifraude.ca/english/reportit-howtoreportfraud.html
> .
>
> Greg
>
>
> _______________________________________________
> clug-talk mailing list
Hi Greg,
I have been getting way to many annoying calls to, and I get so annoyed
I mostly let them go unanswered.
Had some issues about a month ago trying to register on mail list and it
said my IP was known to be associated with spam and registration was
blocked. So I went on line and my IP number checked out A OK.
just an example
http://www.dnsbl.info/dnsbl-database-check.php
Turned out one of the servers he was using had shut down. so the
program was listing everyone new with the same false positive. The only
way I could get through was on his blog messages that he finally looked
at. He removed the dormant server link and all was well.
With the honey pot idea, be a good idea to find out if its legal
nowadays, what with the strange new laws (relating to IT and spam) they
are coming up with lately to supposedly legislate safety.
Saw another article lately cautioning people/businesses to be careful
they have permission to monitor their clients computers, or they could
be caught braking the law.
Ref
http://www.msp-advisor.com/warning-canadian-msps-falling-victim-new-anti-spam-laws-just-monitoring-clients-systems
Rolling on the floor laughing;)
So seriously, do you have written permission to monitor your evil
crooks and scammers computer?
Would it seem that there are so many ways a law can backfire from it's
intended purpose?
Mel
------------------------------
Message: 2
Date: Fri, 30 Jan 2015 14:46:12 -0700
From: John Jardine <john.e.jard...@gmail.com>
To: CLUG General <clug-talk@clug.ca>
Subject: Re: [clug-talk] Honeypot anyone?
Message-ID:
<CAPBTP_waN6gnUJ_=FNtrgs30abE=x1br=k0zpd5uiibkmt4...@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
The laws are written by people that understand the legal system ... not
necessarily anything else. Every industry faces WTF? moments when it
encounters laws that apply to it written by people that don't understand
what they're doing. Politicians are by definition the only group that can
do this because to correct/punish/educate them you need to be expert within
their system:(
Sometimes politicians, or more often courts, come to the realization that a
law is ridiculous and untenable and it is determined to be unenforceable
.... but not often and never where there is $$$ involved.
On Fri, Jan 30, 2015 at 2:38 PM, Mel Walters <melwalt...@telus.net> wrote:
> On Fri, 2015-01-23 at 15:13 -0700, Greg King wrote:
> > I got a call today from someone who claimed to be with the "Canada
> Public Safety Agency" saying my "cyber id" had been traced to spam emails
> and he needed access to my PC to check it. He gave me a name (probably
> bogus) and a phone number of an actual federal government agency
> http://www.publicsafety.gc.ca/index-eng.aspx but his caller id didn't
> match the number. I told him off and hung up. I'm thinking this was a
> missed opportunity to fire up a honeypot and let the caller take control of
> it and delve into what he was trying to do.
> >
> > Has anyone done this? I've googled around and see there a some open
> source distros in this area and am leaning towards Stratagem. I have no
> idea how much work it is to support one of these or if I will get any
> useful data from it, other than the satisfaction of screwing with the
> scammers. I'd be interested in hearing others experience with honeypots.
> >
> > BTW I called the government agency and there must be a lot of this going
> on because their recorded message says that if you got a call from them to
> ignore it - it is a phishing attempt, and to report it to the anti fraud
> centre which I did
> http://www.antifraudcentre-centreantifraude.ca/english/reportit-howtoreportfraud.html
> .
> >
> > Greg
> >
> >
> > _______________________________________________
> > clug-talk mailing list
>
> Hi Greg,
>
> I have been getting way to many annoying calls to, and I get so annoyed
> I mostly let them go unanswered.
>
> Had some issues about a month ago trying to register on mail list and it
> said my IP was known to be associated with spam and registration was
> blocked. So I went on line and my IP number checked out A OK.
> just an example
> http://www.dnsbl.info/dnsbl-database-check.php
> Turned out one of the servers he was using had shut down. so the
> program was listing everyone new with the same false positive. The only
> way I could get through was on his blog messages that he finally looked
> at. He removed the dormant server link and all was well.
>
> With the honey pot idea, be a good idea to find out if its legal
> nowadays, what with the strange new laws (relating to IT and spam) they
> are coming up with lately to supposedly legislate safety.
>
> Saw another article lately cautioning people/businesses to be careful
> they have permission to monitor their clients computers, or they could
> be caught braking the law.
> Ref
>
> http://www.msp-advisor.com/warning-canadian-msps-falling-victim-new-anti-spam-laws-just-monitoring-clients-systems
>
> Rolling on the floor laughing;)
> So seriously, do you have written permission to monitor your evil
> crooks and scammers computer?
> Would it seem that there are so many ways a law can backfire from it's
> intended purpose?
>
> Mel
>
>
> _______________________________________________
> clug-talk mailing list
> clug-talk@clug.ca
> http://clug.ca/mailman/listinfo/clug-talk_clug.ca
> Mailing List Guidelines (http://clug.ca/ml_guidelines.php)
> **Please remove these lines when replying
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://clug.ca/pipermail/clug-talk_clug.ca/attachments/20150130/b5419798/attachment-0001.html>
------------------------------
Subject: Digest Footer
_______________________________________________
clug-talk mailing list
clug-talk@clug.ca
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
------------------------------
End of clug-talk Digest, Vol 122, Issue 4
*****************************************
_______________________________________________
clug-talk mailing list
clug-talk@clug.ca
http://clug.ca/mailman/listinfo/clug-talk_clug.ca
Mailing List Guidelines (http://clug.ca/ml_guidelines.php)
**Please remove these lines when replying
