Wednesday, May 11, 2005
lots of virii in email lately
i think i've got eight emails with various virii/worms over the last few days. is this a spring thing ? do bugs mate in the fall and give birth in the spring ?
i also notice that all the email providers have caught them in one way or the other before they arrived. aol was kind of weak in this regard, they just tagged it as “spam”, with the payload still intact. i tried to save it to disk to edit it, and nav just dinged it right away. these things are fun to reverse engineer, but i really shouldn'y be doing it on my main box anyway.
roadrunner removed the payload unilaterally, while one forwarding service “quarantined” it on their server, awaiting a user decision to delete or receive.
the mail headers aren't too informative. to me it looks as if someone (or some process) at these various services were the ones infected, not one of their customers. but since it creates its own smtp server, it may well be spoofing other stuff as well. i would ;-)