Category: Tech

Posted on
by

I don’t usually post in this category, but the latest Nigerian clone to hit my inbox was worth it. It claimed to be from a British barrister, acting on behalf of a recently deceased French national, attempting to relocate funds from Saudi Arabia. The contact information was an email address as “Barrister Lindsay Smith” was currently in Ireland. I think this one’s winning the “Most Countries Invoked in a Single Spam” award so far as my inbox goes.

On a side note, the only information requested was a name, address, and phone/fax number–not a bank account or credit card or anything of the sort. Maybe the spammers are figuring that asking for financial info is rapidly becoming suicide. Or maybe they think it’ll work better if you establish a rapport first?

Posted on
by

I regularly get bogus bounces from clueless virus scanners that don’t realize the sending address is fake 99% of the time, but this takes the cake:

Sometime last night I received three copies of the same notice from some system in Brazil. They had written their virus warning in Microsoft Word, saved it as HTML without cleaning up all the extra junk, and made it the only part of the message… in Base64 encoding!

If you’re going to send any kind of diagnostic notice by email, you want it to be as simple and widely readable as possible. That means plain text (not HTML or Base64, and certainly not both!) It also means if you do want to use HTML, at least clean it up and include a plain-text alternative. For all you know it’s going to be read by some admin logging into a GUIless server through SSH over a modem connection on a hotel phone line!

Posted on
by

I’ve seen my share of angry complaints about spam with forged sender addresses, but this is amazing: Aunty Spam’s Slam a Spammer Blog is reporting that Sunnyvale resident Charles Booher called up the “sender” of some spam and threatened him with torture and death.

Of course, (a) death threats are criminal, and (b) the callee was not the actual sender but a third party whose address had been forged. Booher is now facing criminal charges with up to five years of prison and a quarter-million dollars in fines.

“Aunty Spam” didn’t provide any further information, but a quick Google search turned up articles suggesting this isn’t the entire story. Mercury News reports [archive.org] that the person Booher threatened, Douglas Mackay, worked at a call center that handled calls for, among other companies, the one that did send the spam. Metroactive reports on an even closer connection: it seems that the spamming corporation was registered to Mackay’s brother. A DOJ press release is (appropriately) matter-of-fact about the allegations. This all went down last November. In my brief search I haven’t found anything about the current status of the case.

Back on the subject of forgery, the SPF website has gotten a major facelift. SPF, or Sender Policy Framework, is a scheme that lets domain name owners identify which servers they use to send mail, so that receiving servers can pre-screen incoming mail for forgeries. Aside from cutting down on phishing attacks, at least with SPF there’s a better chance you’ll be complaining to the right person!

Posted on
by

All the Linux desktop action these days is in KDE and GNOME, but on older hardware, servers, or anything else where you need to squeeze every last ounce of performance from the box, something lighter is needed.

[Screenshot of a WindowMaker desktop] My Linux box at work — a 300 MHz Pentium II — runs WindowMaker. It’s familiar, it stays out of the way, and it doesn’t tie up the memory or CPU that a modern version of KDE or Gnome (or Windows, for that matter) would. But you need to add applets like a clock or a desktop pager. You can find them easily enough — I ended up using the aptly-named wmclock and wmpager – but there’s a significant problem with both. WindowMaker lets you change the size of the dock icons, but when I shrank the dock to get more space I discovered that both applets have a hard-coded size of 64×64 pixels.

[Pair of WM Applets, first at default 64x64 size (they look fine), then at 48x48 (they don't adjust and edges get cut off)] As you can see, a 64×64 applet just doesn’t work in a 48×48 space. It surprised me, though, since these dockapps are designed specifically for WindowMaker, and it’s WindowMaker itself that lets you change the size. You open up Preferences, change the size, and restart WM. Just menus and buttons. No config files, no registry, no third-party add-on. This isn’t an esoteric hack that takes serious effort to find, it’s a basic feature. You might as well design a Mac program that assumes the Dock is on the bottom of the screen. For most people it will be, but it’s not rocket science to move it.

In my ICS classes, they always discouraged us from using “magic numbers” — just throwing a number in the code without identifying or abstracting it. There are two very good reasons for this. The first is that you might forget what this 64 is doing. The second is that you might decide to change it later on, and it’s much easier to change one SIZE=64 definition than to track down every 64 and hope you’ve neither missed any you need to change nor changed any you need to leave alone.

Those dock applets are stuck at 64×64 pixels because the programmers were thinking in terms of the pixel grid, not in terms of actual display size. Continue reading

Posted on
by

Here are several humor articles that have been posted to the SpamAssassin discussion list over the past week:

The TechWeb Spin: All spam is true! (Fredric Paul, Internet Week, June 29, 2004): Yes, you read it here: it’s all true! The author explains about all the money he’s gotten from deposed Nigerian dictators, the software discounts, the combined advantages of certain pharmaceuticals and dating services, and more! [Edit: Sadly the article was deleted before the Internet Archive got to it.]

It’s true, I read it on the Net! (author unknown): I remember seeing this way back when, under the title “The Ultimate Chain Letter.” It’s kind of like the parody of the Good Times Virus (remember that one?) in that it combines everything. All the urban legends about stolen kidneys, rats at KFC, needles in pay phones, and satanic business leaders. All the email hoaxes about Bill Gates giving you money and dying kids asking for email. All the typical chain letter threats about not breaking the chain.

Spam is out of this world (Adam Turner, Syndey Morning Herald, April 1, 2004): An April Fools’ piece about the Mars Spirit rover being crippled by spam traffic: “The rover’s limited onboard artificial intelligence was foolish enough to apply for an shonky online marketing diploma. Soon after offers of cheap WD40 and antenna enlargements began clogging the link between Mars and NASA’s Deep Space Network.” It goes on to explain that Beagle was taken down by a Martian Nigerian scam.

Welcome to Spam University: a parody of a school site with ridiculously low entry requirements (At least four years of elementary school, No more than three felony convictions), course descriptions (Harvesting Addresses, Covering Your Tracks, Spamming Ethics – Canceled), alumni testimonials and more!

ยปAll pages site-wide with this tag