Gaming on Linux, what are my options?

Page 4 - Seeking answers? Join the Tom's Hardware community: where nearly two million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Archived from groups: comp.sys.ibm.pc.games.war-historical (More info?)

While taking a short break from the daily grind of enslavement and
world domination, Jenny100 mentioned

>On Sun, 25 Sep 2005 12:15:43 -0400, Xocyll wrote:
>
>>
>> I'm guessing most of the phish mails have a from address from one of the
>> freemail places like yahoo/lycos/netscape/hotmail or are sent in html,
>> since my filters seem to nail all of them.
>
>The only email address in the "from" address is the one used by
>paypal/amazon/ebay/etc. The links in the email are not links from these
>companies though. They are html emails (to disguise the bogus links) but
>the problem I have with blocking html emails is that some companies
>I order from maybe once or twice a year insist on sending their shipping
>notification emails in html. Now if it were possible to have html emails
>from the favorite phishing return addresses blocked...

As you can tell from my headers, I use Agent for newsgroups and also
for emails (which you CAN'T tell from my headers).

From time to time I receive html emails from a couple of companies.

It's not all that hard to read html emails in ASCII text, skipping
over the formatting commands and extracting the sense of the text.

Change to a newsgroup reader and save yourself the risk of malware
delivery.
..
..
We are Microsoft of Borg.....Your technological distinctiveness will be
added to our own.....Resistance is fu...
......$$@#
..
General Protection Fault in MSBORG32.DLL
...
 
Archived from groups: comp.sys.ibm.pc.games.rpg,comp.sys.ibm.pc.games.action,comp.sys.ibm.pc.games.adventure,comp.sys.ibm.pc.games.war-historical,comp.sys.ibm.pc.games.strategic (More info?)

Jenny100 <nospam@nospam.com> looked up from reading the entrails of the
porn spammer to utter "The Augury is good, the signs say:

>On Sun, 25 Sep 2005 12:15:43 -0400, Xocyll wrote:
>
>>
>> I'm guessing most of the phish mails have a from address from one of the
>> freemail places like yahoo/lycos/netscape/hotmail or are sent in html,
>> since my filters seem to nail all of them.
>
>The only email address in the "from" address is the one used by
>paypal/amazon/ebay/etc. The links in the email are not links from these
>companies though. They are html emails (to disguise the bogus links) but
>the problem I have with blocking html emails is that some companies
>I order from maybe once or twice a year insist on sending their shipping
>notification emails in html.

Easily enough dealt with via a whitelist or the equivalent in filters.

Nuke everything that's html except those from companies you order from.
As long as the "let this company through" filter is a higher priority
than the bulk "nuke all html" filter, those few mails you want will get
through.

As it happens, my father gets jokes mailed to him by various people,
some of which he forwards to me, and some of those are html.
Since he's in my whitelist, those get through just fine, all other html
gets nuked.

>Now if it were possible to have html emails
>from the favorite phishing return addresses blocked...

It almost certainly is, with a bit of work.
How much work depends on the software you use, the filtering it's
capable of, and perhaps something distinctive in the phish.

Xocyll
--
I don't particularly want you to FOAD, myself. You'll be more of
a cautionary example if you'll FO And Get Chronically, Incurably,
Painfully, Progressively, Expensively, Debilitatingly Ill. So
FOAGCIPPEDI. -- Mike Andrews responding to an idiot in asr
 
Archived from groups: comp.sys.ibm.pc.games.rpg,comp.sys.ibm.pc.games.action,comp.sys.ibm.pc.games.adventure,comp.sys.ibm.pc.games.war-historical,comp.sys.ibm.pc.games.strategic (More info?)

On Mon, 26 Sep 2005 09:00:07 -0400, Xocyll <Xocyll@kingston.net>
wrote:

>Jenny100 <nospam@nospam.com> looked up from reading the entrails of the
>porn spammer to utter "The Augury is good, the signs say:
>
>>On Sun, 25 Sep 2005 12:15:43 -0400, Xocyll wrote:
>>
>>>
>>> I'm guessing most of the phish mails have a from address from one of the
>>> freemail places like yahoo/lycos/netscape/hotmail or are sent in html,
>>> since my filters seem to nail all of them.
>>
>>The only email address in the "from" address is the one used by
>>paypal/amazon/ebay/etc. The links in the email are not links from these
>>companies though. They are html emails (to disguise the bogus links) but
>>the problem I have with blocking html emails is that some companies
>>I order from maybe once or twice a year insist on sending their shipping
>>notification emails in html.
>
>Easily enough dealt with via a whitelist or the equivalent in filters.
>
>Nuke everything that's html except those from companies you order from.
>As long as the "let this company through" filter is a higher priority
>than the bulk "nuke all html" filter, those few mails you want will get
>through.
>
>As it happens, my father gets jokes mailed to him by various people,
>some of which he forwards to me, and some of those are html.
>Since he's in my whitelist, those get through just fine, all other html
>gets nuked.
>
>>Now if it were possible to have html emails
>>from the favorite phishing return addresses blocked...
>
>It almost certainly is, with a bit of work.
>How much work depends on the software you use, the filtering it's
>capable of, and perhaps something distinctive in the phish.
I use this
spamarrest.com
>
>Xocyll
 
Archived from groups: comp.sys.ibm.pc.games.rpg,comp.sys.ibm.pc.games.action,comp.sys.ibm.pc.games.adventure,comp.sys.ibm.pc.games.strategic (More info?)

On Mon, 26 Sep 2005 09:00:07 -0400, Xocyll wrote:


>>Now if it were possible to have html emails
>>from the favorite phishing return addresses blocked...
>
> It almost certainly is, with a bit of work.
> How much work depends on the software you use, the filtering it's
> capable of, and perhaps something distinctive in the phish.

instead of filter on header/from/etc

use a filter on body, and add in email phisher's email address

eg:

filter on body, if body has <html> AND
body contains blah@email.abc

or

filter on body, if body has <html> AND
body does not contain whitelist@email1.abc or white@email2.aa etc


again, it depends on how good your software is.
 
Archived from groups: comp.sys.ibm.pc.games.rpg,comp.sys.ibm.pc.games.action,comp.sys.ibm.pc.games.adventure,comp.sys.ibm.pc.games.strategic (More info?)

wyzwyz <wyzwyz@wyz.wyz> looked up from reading the entrails of the porn
spammer to utter "The Augury is good, the signs say:

>On Mon, 26 Sep 2005 09:00:07 -0400, Xocyll wrote:
>
>
>>>Now if it were possible to have html emails
>>>from the favorite phishing return addresses blocked...
>>
>> It almost certainly is, with a bit of work.
>> How much work depends on the software you use, the filtering it's
>> capable of, and perhaps something distinctive in the phish.
>
>instead of filter on header/from/etc
>
>use a filter on body, and add in email phisher's email address

I know how to filter.
I didn't give specific examples because they may work or not depending
on whether the software the person is using does or doesn't support that
feature.

At one point I had a couple hundred filters wiping spam, but now that
I've killfiled a few countries, it's not necessary anymore.
After all, since I know no one in .br .cn .fr .hr .it or .jp, it's
highly unlikely i'll ever get legit mail from those countries - I did
get hundreds of spam from them, from various isps therein.
Dumping the entire country allowed me to drop dozens of different isps
in those countries i'd previously filtered.
Should I ever want to correspond with someone in those countries, i'll
whitelist specific addresses.

I've also never gotten legit mail posted via "The Bat", so "X-Mailer:
The Bat!" is another of my filters

I don't accept yahoo/netscape/hotmail or lycos mail either for the
simple reason that I have received several thousand spams from those
addresses (as the poster or the reply address) and since they seem
unwilling to stop being spam havens, they're refused.

When you get spam over several days/weeks with reply addresses via yahoo
using _incremental_ addresses, you can tell yahoo has no real concern
about spammers using their services.
Sure they'll delete RabidSpammer001@yahoo.com if they get complaints,
but they'll happily allow the creation of RabidSpammer002,
RabidSpammer003, etc.

I don't care if they sent it through yahoo, if they're receiving the
REPLIES to their spams via yahoo, then yahoo is part of the problem.

The others mentioned are equally bad.

>filter on body, if body has <html> AND
>body does not contain whitelist@email1.abc or white@email2.aa etc

This was the specific example the original poster said WAS getting
through filters by using an address that would be in the recipients
whitelist (IE ebay, amazon etc.) Social engineering at it's finest.

This is the case (as I said above) where you need to dig something out
of the phish that's unique and won't occur in legit mail and filter on
it.

>again, it depends on how good your software is.

It depends more on knowing what the software can do, and actually doing
it - there's loads of people who complain about getting spam who won't
take 10 minutes and read the documentation of their software and set up
filters.

It's apparently too much work to do that, but it's not too much work to
download and delete dozens of spams per day and constantly complain
about getting them.

I used to get hundreds of spams per day (due to using my real address on
usenet and it being harvested), now I might see 1 week or two that
squeezes through the filters and is promptly analyzed and added to them.

Xocyll
--
I don't particularly want you to FOAD, myself. You'll be more of
a cautionary example if you'll FO And Get Chronically, Incurably,
Painfully, Progressively, Expensively, Debilitatingly Ill. So
FOAGCIPPEDI. -- Mike Andrews responding to an idiot in asr
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom