Bill:
> That's an obvious case of something bad. But that's not the scary
> part. A few years ago, I got phone calls in which the caller-id
> showed the caller was me. I did not answer.
I once answered the phone to hear a recording of myself saying hello
and saying my name. Then it hung up.
(responding to Samuel, George, and Tim)
> If you're not sure and it's important, then try contacting
> them to verify it. Use an alternate method if possible.
That's how the message that triggered this thread was ultimately solved.
But sometimes that's not available. I have several foreign fr
On Mon, 15 Jul 2019 at 22:52, Samuel Sieb wrote:
[...]
> Are you going to change your email accounts every time some spammer
> starts using the address? My email address has been used by virii and
> spam for at least 15 years. It was funny because when this started to
> be a thing, I got a few
On 7/15/19 8:28 PM, Tim via users wrote:
One day someone might think to create a plug-in that checks links with
two different addresses in such links, and red flags them.
Thunderbird warns me about some links. I'm not sure what its criteria
are, but it asks if I'm sure that I want to go to th
Tim:
>> I think he means:
>> 1. Look at the lines up to and including the next received line.
>> 2. Repeat the process, upwards.
>> 3. Otherwise, stop looking any further, it's spam.
Bill:
> Parse Error! My mind incorrectly parsed what Tony said.
I didn't find the language too clear, either. Bu
On 7/15/19 10:20 AM, home user via users wrote:
are almost certainly malicious and should not be responded to or
forwarded, should not have links in them clicked or attachments to them
downloaded, perhaps should be reported to appropriate authorities, and
certainly should deleted. Those are no
Thank-you, Tim, for the follow-up.
> > 'If that line says the "from" is reasonable,
> > look at the lines up to and inclucing the
> > next Received: line and loop, otherwise
> > stop, it's spam.'
> I think he means:
> 1. Look at the lines up to and including the next received line.
> 2. Repeat t
On Sat, 2019-07-13 at 18:58 -0600, home user via users wrote:
> Still, what is the "line and loop, otherwise stop, it's spam." that
> Tony mentioned?
'If that line says the "from" is reasonable, look at the lines up to
and inclucing the next Received: line and loop, otherwise stop, it's
spam.'
I
Good evening,
(jdow asked)
> Do the "Reply-To:" and "From:" headers make sense
> when considered together?
They match.
>Does the "From:" make sense considering the contents.
Yes. Likewise the subject. But the info in those parts could have been
obtained from social networking sites.
(res
On 7/14/19 7:56 AM, jdow wrote:
> You erased one of the more important clues for legitimacy. Do the "Reply-To:"
> and "From:" headers make sense when considered together?
You forgot the most important factor.
If you have to ask the question: "Is this message probably genuine or probably
a spoo
On 20190713 16:29:20, home user via users wrote:
(Tony Nelson said)
> [snip]
>
> Look at the message header. (View Source is a good way,
> as it will be exact.) The first Received: line and any
> lines before it come from your email provider, who is
> mostly to be trusted, though anyone can
On 07/13/2019 05:58 PM, home user via users wrote:
I just received a message from
[sender]@gmail.com
but the last line in the message is a bluish line saying
"Sent from Yahoo Mail on Android"
I do know someone named [sender] but the from address is not what I have
for that person, thoug
(Tony Nelson said)
> [snip]
>
> Look at the message header. (View Source is a good way,
> as it will be exact.) The first Received: line and any
> lines before it come from your email provider, who is
> mostly to be trusted, though anyone can make mistakes.
> If that line says the "from" is reason
On 19-07-13 17:58:12, home user via users wrote:
I just received a message from
[sender]@gmail.com
but the last line in the message is a bluish line saying
"Sent from Yahoo Mail on Android"
I do know someone named [sender] but the from address is not what
I have for that person, though the
I just received a message from
[sender]@gmail.com
but the last line in the message is a bluish line saying
"Sent from Yahoo Mail on Android"
I do know someone named [sender] but the from address is not what I have
for that person, though the sender could have gotten a new e-mail
address ve
On 12/8/18 9:38 AM, home user via users wrote:
Kevin (and everyone else),
View -> Message Source
and
More -> View Source
do the same thing as Control-U. Unfortunately, what I get (after the
header) is three blocks of seemingly random characters, not html.
Changing the
View -> Text Encoding
se
Howard:
> Thanks for the tip Bill, ...
Thank Kevin, not me.
Kevin (and everyone else),
View -> Message Source
and
More -> View Source
do the same thing as Control-U. Unfortunately, what I get (after the
header) is three blocks of seemingly random characters, not html.
Changing the
View -> Tex
On Thu, 2018-12-06 at 21:03 -0500, Kevin Cummings wrote:
> On 12/1/18 3:51 PM, home user via users wrote:
>
> > I'm using Thunderbird on Fedora-28; there is no "anti-virus"
> > available.
> > Is this safe?
>
> If you're using Thunderbird, then a simple control-U works
> wonders. It
> shows the e
On 12/1/18 3:51 PM, home user via users wrote:
> I'm using Thunderbird on Fedora-28; there is no "anti-virus" available.
> Is this safe?
If you're using Thunderbird, then a simple control-U works wonders. It
shows the email "source code" unmasking any HTML hiding the link. This
is only useful i
On Wed, 2018-12-05 at 15:20 +1030, Tim wrote:
> Tim:
> > > Look in the View menu, inside the Layout section, enable the Show
> > > Status Bar item.
>
> Howard Howell:
> > It shows 4 options, all checked. What did you think I would find
> > there?
>
> Amongst other options, the one I just describ
On Tue, 2018-12-04 at 10:11 -0800, Howard Howell wrote:
> After the latest update I show five, too. They are all checked, but
> the hover function described still doesn't work. Maybe something in my
> setup or .config. I'll create a new user and see what shows up there.
>
> It's not a big deal,
Tim:
>> Look in the View menu, inside the Layout section, enable the Show
>> Status Bar item.
Howard Howell:
> It shows 4 options, all checked. What did you think I would find
> there?
Amongst other options, the one I just described...
If you do have a "Show Status Bar" item in the list, try un
On Mon, 2018-12-03 at 23:12 +, Patrick O'Callaghan wrote:
> On Mon, 2018-12-03 at 10:59 -0800, Howard Howell wrote:
> > On Tue, 2018-12-04 at 00:29 +1030, Tim wrote:
> > > Allegedly, on or about 2 December 2018, Howard Howell sent:
> > > > I'm still using evolution in F28 and it doesn't do that
Barracuda Networks provides common e-mail SPAM appliances and mail
archiving appliances
https://www.barracuda.com/
On Sat, Dec 1, 2018 at 3:24 PM home user via users <
users@lists.fedoraproject.org> wrote:
> Good afternoon,
>
> Today, I received a message claiming to be from "nore...@barracuda.c
On Mon, 2018-12-03 at 10:59 -0800, Howard Howell wrote:
> On Tue, 2018-12-04 at 00:29 +1030, Tim wrote:
> > Allegedly, on or about 2 December 2018, Howard Howell sent:
> > > I'm still using evolution in F28 and it doesn't do that. If I am
> > > interested, I copy the link location and paste it int
On Tue, 2018-12-04 at 00:29 +1030, Tim wrote:
> Allegedly, on or about 2 December 2018, Howard Howell sent:
> > I'm still using evolution in F28 and it doesn't do that. If I am
> > interested, I copy the link location and paste it into a new
> > email.
> > Generally I'm not interested, so it is n
On Tue, 2018-12-04 at 00:29 +1030, Tim via users wrote:
> Allegedly, on or about 2 December 2018, Howard Howell sent:
> > I'm still using evolution in F28 and it doesn't do that. If I am
> > interested, I copy the link location and paste it into a new email.
> > Generally I'm not interested, so i
Allegedly, on or about 1 December 2018, home user via users sent:
> Samuel: I understand what you said about anti-virus software. I was
> incorrect about wanting it for Thunderbird. In this case, it would
> be for the browser. I think you're mostly correct, but I still wish
> for something to p
Allegedly, on or about 2 December 2018, Howard Howell sent:
> I'm still using evolution in F28 and it doesn't do that. If I am
> interested, I copy the link location and paste it into a new email.
> Generally I'm not interested, so it is not too troubling. but it
> would be nice if the hover fun
Sam asked:
> How did you determine that this is the destination URL
> That's what you see, in the HTML-formatted E-mail?
I already knew about the "trick" that Ed Greshko suggests before he
posted his suggestion. (But thank-you, Ed, for trying to help.) That's
how I determined the destination
On Sun, 2018-12-02 at 12:59 -0500, Howard Howell wrote:
> On Sun, 2018-12-02 at 09:59 +, Patrick O'Callaghan wrote:
> > On Sun, 2018-12-02 at 11:05 +0800, Ed Greshko wrote:
> > > On 12/2/18 10:46 AM, Sam Varshavchik wrote:
> > > > I'll be happy to send you an HTML message with a link whose
> >
On Sun, 2018-12-02 at 09:59 +, Patrick O'Callaghan wrote:
> On Sun, 2018-12-02 at 11:05 +0800, Ed Greshko wrote:
> > On 12/2/18 10:46 AM, Sam Varshavchik wrote:
> > > I'll be happy to send you an HTML message with a link whose
> > > destination URL seems to be
> > > https://www.whitehouse.gov,
On Sat, 2018-12-01 at 20:45 +, finn via users wrote:
>
> and make sure there is a green lock on your browser address bar.
Have a look at:
https://krebsonsecurity.com/2018/11/half-of-all-phishing-sites-now-have-the-padlock/
AV
___
users mailing list
Sorry for the top post, but my phone seems to insist on it using K9 mail.
Anyway, I keep an old smartphone that I no longer use -- I have moved my SIM
card to my current phone. It can still connect to WiFi, though. I use it to
try out dodgy links. I figure there's little loss if it gets scre
On Sat, 1 Dec 2018 at 17:18, Samuel Sieb wrote:
> On 12/1/18 12:51 PM, home user via users wrote:
> > Ryan,
> [...]
> > I'm using Thunderbird on Fedora-28; there is no "anti-virus" available.
> > Is this safe?
>
> I've never found "anti-virus" to have any use on a Linux system other
> than a way
On Sun, 2018-12-02 at 11:05 +0800, Ed Greshko wrote:
> On 12/2/18 10:46 AM, Sam Varshavchik wrote:
> > I'll be happy to send you an HTML message with a link whose destination URL
> > seems to be
> > https://www.whitehouse.gov, but once clicked you'll wind up on
> > https://pornhub.com
>
> FWIW,
> finn: I used Tor in this case. But in retrospect, one thing I was
> concerned about was the site downloading something malicious without me
> knowing it. Would Tor have protected me against that?
yep, Tor browser is harden enough to protect you from these kind of attack and
provide better anon
On 12/2/18 10:46 AM, Sam Varshavchik wrote:
> I'll be happy to send you an HTML message with a link whose destination URL
> seems to be
> https://www.whitehouse.gov, but once clicked you'll wind up on
> https://pornhub.com
FWIW, with T-Bird it is easy to recognize this deception. To see if what
home user via users writes:
Ryan,
> Please make sure that the domain name in the link's destination
> URL ends in "barracuda.com".
The link's destination URL starts with
"https://encrypt.barracudanetworks.com/login?nid=";.
The rest is a very long alpha-numeric string.
How did you determine t
home user via users writes:
Good afternoon,
Today, I received a message claiming to be from "nore...@barracuda.com".
Never heard of them. The message tells me to click a link in the message to
view an encrypted message. Now I know that clicking links in e-mail is
risky. How do I safel
I pasted the link into the Tor Browser. The only info I had to give was
to set a password.
Sometime last month, I used the web site for the Colorado consumer
complaints office to ask where/how to file a federal complaint about
national-brand canned food products sold in supermarkets being
si
On 12/1/18 2:14 PM, Cameron Simpson wrote:
4: Are you expecting an encrypted message from someone you've never
heard of? I've never received one, and if I did I would expect it to be
encrypted _to me_ i.e. GPG encrypted with _my_ public key. The key take
here is that to retrieve it I don't have
On 01Dec2018 13:23, home user wrote:
Today, I received a message claiming to be from
"nore...@barracuda.com". Never heard of them. The message tells me to
click a link in the message to view an encrypted message. Now I know
that clicking links in e-mail is risky. How do I safely determine
On 12/1/18 12:51 PM, home user via users wrote:
Ryan,
> Please make sure that the domain name in the link's destination
> URL ends in "barracuda.com".
The link's destination URL starts with
"https://encrypt.barracudanetworks.com/login?nid=";.
The rest is a very long alpha-numeric string.
If
Ryan,
> Please make sure that the domain name in the link's destination
> URL ends in "barracuda.com".
The link's destination URL starts with
"https://encrypt.barracudanetworks.com/login?nid=";.
The rest is a very long alpha-numeric string.
I'm using Thunderbird on Fedora-28; there is no "anti-
copy link and paste this link to Tor browser(if possible otherwise any browser
in private window) and make sure link end with barracuda.com and there is a
green lock on your browser address bar.
Original Message
On 2 Dec 2018, 1:53 AM, home user via users wrote:
> Good afterno
El dic 1, 2018, a las 12:37 PM, Ryan Cunningham
escribió:
> [. . .] and also file a complaint with the U.S. Federal Trade Commission at
> ftccomplaintassistant.gov [. . .]
CORRECTION: You should instead file the complaint with the Internet Crime
Complaint Center (IC3) at ic3.gov.
> El dic 1, 2018, a las 12:23 PM, home user via users
> escribió:
>
> Good afternoon,
>
> Today, I received a message claiming to be from "nore...@barracuda.com".
> Never heard of them. The message tells me to click a link in the message to
> view an encrypted message. Now I know that clic
Good afternoon,
Today, I received a message claiming to be from "nore...@barracuda.com".
Never heard of them. The message tells me to click a link in the
message to view an encrypted message. Now I know that clicking links in
e-mail is risky. How do I safely determine if this is genuine an
49 matches
Mail list logo
