border border border
border
Brigatti On-line - http://www.brigatti.co.uk
border border
HomeNewsWeblinksContact Us Thursday, 30 March 2017    
 
    arrow       Home


Main Menu
 Home
 Site News
 Web Links
 Personal Sites
 University Sites
 Client Sites
 CV | Résumé
 Contact Us
 Brigatti Forums
 Brigatti Blog
 Brigatti Singapore Blog
 My New Life in Singapore
 Brigatti Gallery
 Community
 Recommend Site
 Site Map
 - - - - - - -
 Administrator

LinkedIn
View Aaron Brigatti's profile on LinkedIn

FaceBook
Facebook Profile

Login Form
Username

Password

Remember me
Forgotten your password?

Who's Online
We have 9 guests online

Online Users
No Users Online

Hit Counter
5260791 Visitors
(Since Aug 2004)

Google Adsense

Brigatti Cloud

actually   although   another   anyway   around   being   bonnet   brigatti   certainly   clio   couple   days   decided   didn   flight   friday   going   greek   having   holiday   hotel   into   issue   maintenance   managed   mechanism   nice   not   opportunity   really   renault   safety   service   simply   site   something   vosa   wanted   weeks   without   years  


Did you know?
This sport was originally known as football in England, at least until the advent of rugby (a variant of soccer/football) which led to some confusion of names. The game soon became known as association football to distinguish it from rugby. Eventually it became known as football or soccer. The name soccer actually comes from the second syllable of the word association. The name soccer was adopted in North America to differentiate the sport from other forms of football played in the U.S. and Canada.

PayPal Donation
Support Brigatti On-line, by making a small donation:

Answers.com

border
Is My Outlook 2007 a SpamBot?   Print 
Written by Aaron Brigatti  
Friday, 24 April 2009

Well I had a feeling something funny was going on with Outlook 2007, as occassionally when I did a send/receive (without any mails pending to be sent), I noticed that the process would actually be triggering mails waiting in a mystery queue. This was noted by the "sending x of y" appearing in the status bar.

I didn't really think much of it, but I started become more paronoid when in my spam box, I saw spirts of spam mail appearing to be sent from my own personal e-mail account.  This could only really mean one thing, either someone was setting up accounts to "impersonate" my address - something which has long been an issue / risk, or it was actually being sent my from account.  I think it's more of the former in this case, but I also feel Outlook 2007 was being targetted to become a SpamBot - a machine taken over to send spam or come under the control of spammers. 

I don't think mine is, as there is no virus or trojans found on my computer - but I found some interesting flaws with Outlook 2007.  It appears that the spammers are exploiting a bug within Outlook (rather than using my computer!), where they set up a “acknowledge of read” flag to the mail...the one that allows the sender of an e-mail to determine whether a recipient has opened or read the mail.  This normally activates a read/not read acknowledgement back to the recipient. 

The bug relates to the “x-confirm-reading-to header” field, which then somehow triggers the spam that “appears” to originate from me when I use Outlook to clean-out the Junk e-mail box. Effectively turns my account into a "spambot" type of machine, as the response is meant to trigger an e-mail to all of the previous senders of an e-mail...i.e. for every piece of spam sent to that account with that header filled in.  Not entirely sure if this is definitely the case for me, but it could appear to be a reason - why a couple of my friends reported receiving spam mail from my personal address sent to them - i.e. possibly leveraging my address book.  Grrr!!

Anyway, I’ve tried a few workarounds to see whether it works, including putting “Sender: not read” in a filter to put these e-mails into a separate (new) Junk folder...to see if I can start seeing the trails of emails before they go out - and also making all junk "read" before I delete them!  Fingers crossed this solves the problem initially at least - as the bug remains open and probably will be exploited more often now by spammers.

A few sites to reference on the same "feature":

http://www.slipstick.com/problems/rr_ndr.asp
http://forums.techguy.org/general-security/753746-outlook-2007-sending-spam-5.html
http://blog.impactalabs.com/2008/11/05/outlook-2007-imap-spam-bug-workaround/

Comments

Only registered users can write comments.
Please login or register.

Powered by AkoComment 1.0!


go to top Go To Top go to top

border
Polls
How can Brigatti Online be improved?
More photographs / pictures
More up-to-date news (inc. blog) entries
More interactive functionality
More news of interest
More fun modules
  

BBC.co.uk/news

Symantec

Yahoo! Finance
Yahoo! UK & Ireland Finance - http://uk.finance.yahoo.com
ticker or name


Symbol lookup

Currency Convertor

Convert this amount

of this type of currency

into this type of currency.

Universal Currency Converter service and trade mark under license from xe.com.
Terms of Use


Mail2Web.com
E-mail
Password

Privacy Policy FAQS
Powered by mail2web.com

Most Read
Hi5.com - Request for Your Profile to be added
Masters Graduation Ceremony
A life-threatening near miss with my Renault Clio on 27th March
Swanking New Samsung HD-LCD 40" TV!
Buying my own place!

© Copyright 1995- Aaron Brigatti. ® All Rights Reserved.
Disclaimer | Privacy Policy | Terms of Use.
Page was generated in 0.238070 seconds
powered by mambo OS
border
border border border