The Boston Diaries

The ongoing saga of a programmer who doesn't live in Boston, nor does he even like Boston, but yet named his weblog/journal “The Boston Diaries.”

Go figure.

Wednesday, March 03, 2004

FYI

From: support@conman.org
To: sean@conman.org
Subject: Notify about your e-mail account utilization.
Date: Wed, 03 Mar 2004 13:39:43 -0500

Dear user of e-mail server “Conman.org”,

Our antivirus software has detected a large ammount of viruses outgoing from your email account, you may use our free anti-virus tool to clean up your computer software.

For further details see the attach.

For security reasons attached file is password protected. The password is “36847”.

Kind regards,
  The Conman.org team http://www.conman.org

Yea, like any virus has escaped from this email account. Quite possibly forged email, but none directly from me. Never mind the fact that the email client I use doesn't support attachments, I don't use Windows to check my email—I use Unix (okay, technically Linux). And running Windows executables just isn't possible (well, it is possible but it isn't easy to do, thankfully).

But what gets me is that this is supposedly from support@conman.org, which doesn't exist here at Conman Laboratories. And even if it did, it would either be myself or Mark doing the support role. I don't send attachments, and if Mark did, I suspect it wouldn't be in zip format (we're both more tar.gz users than zip users). And Mark would never send a password in email.

Oh, and we don't run anti-viral software on the server—it's just not an issue here.

Sigh.

Update later today

This is an identical message that we were getting at work. It is spam/trojan virus. It uses your domain name. Very clever too. Variations of it use different wording and spacing, making filtering difficult. Also, the .zip file contains a trojan .exe and is uaually “Readme.zip” or “TextFile.zip” and is password protected. Why? No virus scanner can take a peek inside and quarrantine it.

I give these bozos points for this one. Looks like they have been saving up many ideas for one blow.

Too bad they pissed me off—it hit us at about 11:20am. I had a 12:00 lunch appointment. I ended up being 15 minutes late to this lunch appointment after tracing the source to somewhere in Houston, TX and setting up sufficient blocks to keep it out. It's a good thing they assigned the email filter system to the UNIX group (of which I am currently the ONLY member of) (simply because it runs on a Linux black box—completely contained, but Linux backend)—that way I was the “Jr. Admin” who blocked the trouble in less than an hour. PFffft!

Kelly Fallon

I was wondering about the password protection but this does make sense. Too much.

Blah.

Obligatory Picture

[It's the most wonderful time of the year!]

Obligatory Contact Info

Obligatory Feeds

Obligatory Links

Obligatory Miscellaneous

You have my permission to link freely to any entry here. Go ahead, I won't bite. I promise.

The dates are the permanent links to that day's entries (or entry, if there is only one entry). The titles are the permanent links to that entry only. The format for the links are simple: Start with the base link for this site: http://boston.conman.org/, then add the date you are interested in, say 2000/08/01, so that would make the final URL:

http://boston.conman.org/2000/08/01

You can also specify the entire month by leaving off the day portion. You can even select an arbitrary portion of time.

You may also note subtle shading of the links and that's intentional: the “closer” the link is (relative to the page) the “brighter” it appears. It's an experiment in using color shading to denote the distance a link is from here. If you don't notice it, don't worry; it's not all that important.

It is assumed that every brand name, slogan, corporate name, symbol, design element, et cetera mentioned in these pages is a protected and/or trademarked entity, the sole property of its owner(s), and acknowledgement of this status is implied.

Copyright © 1999-2021 by Sean Conner. All Rights Reserved.