Windows 'Bagel' Worm Spreading Fast
http://www.eweek.com/article2/0,4149,1443703,00.asp

It would be handier if, like on Linux/UNIX, you had to go out of your way
to make a file executable.

Would it be possible for sendmail or postfix to rename the attachment from
..exe to something else, so it wouldn't be readily executable by the reader?

If you know in advance that you're going to receive a .exe, then you
shouldn't mind renaming it, no?

--
FreeBSD 4.8-RELEASE i386
3:05PM up 66 days, 17:16, 1 user, load averages: 0.00, 0.01, 0.00

Windows makes you stupid.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 26 Jan 2004 21:11:18 GMT,
General Protection Fault <generalpf@braids.ertw.com> wrote:
agreed

yes

pretty much.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAFZWnd90bcYOAWPYRAh7jAKC3By/uFCTIUGsgfmMROUPmsH5pBgCfV8y5
lkiumFudEygcZjngBsSirL8=
=j0ZX
-----END PGP SIGNATURE-----

--
Jim Richardson http://www.eskimo.com/~warlock
I'm not short...I'm concentrated!

On 2004-01-26, chrisv <chrisv@nospam.invalid> wrote:
People who use windows, and open attachments without any
caution whatsoever, deserve all they get. Mistakes like that
will make them learn.

--
Mark Gary

chrisv wrote:
It not windows, people are just stupid, it doesn't matter what OS they
are using.... Right now you have some sort of brain to use Linux or atleast
hear about Linux, so right now thats what type of people using it. If
Linux gets preinstalled on most computers, watch out, for the flood of
stupitity.

Quantum Leaper wrote:

Thats why I hope Lindows crashes and burns.

--

Mark Gary wrote:
Mistakes like that will make them learn.

Has it worked with the past 4 dozen MS viruses made MS users change
their behavior? How can you assert that they are capable of learning?

Sandi

PS the reason that my post is not above the previous post is that I am
arguing with a PARTICULAR point in a previous post, not merely making a
comment about the general direction of a thread. If I am arguing point
by point, I will break down the other person's post point by point. In
Mozilla the default is to have the quoted text below, unlike AOL's
default of quoted text first. If you have been following a thread, there
is no reason to scroll through all of the previous conversation, yet if
you are stepping in mid thread, and feel you are missing something, you
are free to scroll down for context.

Quantum Leaper wrote:

I agree completely. One security thing about Linux is that you have to go
through several steps to perform certain potentially dangerous tasks. With
Windows it's just point and click. If Linux distros start adapting their
products to make these dangerous things (configuring firewalls, installing
software, adjusting hardware and disk settings, etc.) easier to access by
making them point-and-click, then there's going to be trouble.

Also, they've got to keep the root and user functions separated. This can be
confusing as hell for non-techies, but it's absolutely important to
computer security. It makes you think before you act -- even if only for a
few moments.

Mark Gary wrote:

Hate to say it, but you're right. I've told several Windows users time and
again about it and I get the "yes, dad, whatever you say" look. Then they
get burned. I go fix their machine and collect my fee, and they vow to
never, ever do it again.

My thinking is that Windows users think
a) It won't happen to them,
b) It's all media hype,
c) If it was _that_ important, MS or PC maker would have warned them about
it.
d) Besides, what's a guy with 20 years of experience working with PCs and
minis know, anyway?

On Mon, 26 Jan 2004 21:11:18 +0000, General Protection Fault wrote:


Just set it up to drop the fucking things with a mime header check and
send back a nasty bounce message, that way if it was a real email the
other person knows and if it was a mail virus it just gets dropped.

http://www.securitysage.com/guides/p...ce_header.html

On 2004-01-27, Sandi Jones <sandimjones@fuse.net> wrote:
The sad fact is that the learning process will be slow and painfull,
and not just for those stupid enouugh to open the files. The rest of
us have to suffer too with receiving numerous bogus mails. The last
time this happend, I must have had hundreds of them.

As time goes by, and more and more realise *why* its happening,
they will switch to an OS that will not harm them.

Sandi Jones wrote:

Give it up. Your way is wrong. Get over it. This has been settled for
years. Your way stinks.

--

On Tue, 27 Jan 2004 00:34:46 GMT, in article
<news:GmiRb.28013$q4.25069@newsread3.news.atl.eart hlink.net>, John wrote:

e) They think you're cute.

Mark Gary wrote:

But they won't. Most Windoze users are stupid. Example:

I work at a newspaper that operates mostly on Macs - 63 workstations, to be
exact. There is a handful of PCs in use, mostly in accounting and
circulation. Guess which machines our IT person spends most of her time
fucking with? The PCs. The idiots download various cooties or bring them in
on floppy disk or CD-ROM. They don't know how to do the most basic
maintenance or housekeeping, like cleaning out the 4GB of temporary files
that are hogging space on their hard disk, or adjusting their video
settings for best-quality picture. They can't do shit. The Mac users seldom
have to bother the IT person with anything except the most major screwups.
--
[tv] Owner and Proprietor, Trollus Amongus Inc. & friend of all Usenet

If at first you don't succeed, you must be using Microsoft products.
"I'm dead, Jim." - DeForest Kelley, June 11, 1999

Mark Gary wrote:

Yes, but those who get spammed or DDOSed by their zombied machines don't.
OK, maybe SCUM does, but the rest of us don't.


--
--------------===============<[ Ray Chason ]>===============--------------
This message was stage-managed by IBM. So say Darl McBride and SCO.
Delendae sunt RIAA, MPAA et Windoze

On 2004-01-27, John <spambegone@127.0.0.1> wrote:
Depends on your e-mail client... With OE and versions of outlook pre 2K
SP2 - it will run the attachment after it presents you with a big ugly
warning... If your using Outlook post 2K SP2 - and most of these things
won't only not run them, it won't let you even save them to disk without
hacking the registry...

In other words, to run an .exe file in Outlook XP... You must either be
on an exchange server were the admin has given permissions for .exe
attachments or you have to hack the registy. Once that is done, outlook
still will not run the attachment - the most it will let you do is save
it. Once you save it you have to browse to it and run it... So, it is
sort of a laborious process. About like Linux - except you don't have
to chmod it... Yet, people do it - even at my work were people are
supposed to know better.... All I can conclude is that people are just
dumb.

--
Tom Shelton

Mark Gary <mark@mwg003.mwgary.demon.co.uk> wrote:
Trouble with that is...
WE get the punishment just as much as them
One of my e-mail accounts is STILL almost unusable without setting a message
size limit on it because of that nasty virus last year.

At it's peak, my mailbox was almost full again by the time I'd finished
downloading the first lot. That must account for about 1 Meg's worth of
viral junk every 10 minutes. (And the mailbox has only a 2 megs quota, so
imagine how much extra traffic got caused by all the junk bouncing off that
address when I was at work?)

Sandi Jones wrote:

<snip Sandi Jones's justification for top-posting>

You're just making this stuff up because you don't want to admit you were
wrong. But instead of carrying on any further, please show a bit of
character, admit your mistake and go with the flow. It's only manners.

--
Powered by Mandrake Linux
Registered Linux user 337927 - http://counter.li.org/

On Mon, 26 Jan 2004 21:11:18 GMT, General Protection Fault
<generalpf@braids.ertw.com> wrote:

I'll give you an example that happened to a friend of mine yesterday.
She was downloading some movies using Newsbin Pro and they all showed up
correctly as *.mpg files. FWIW NBP has filters to eliminate *.exe etc files.

So anyway, she clicks on a file that has a RealPlayer icon and subsequently gets
a message about "file not executed, DLL not loaded" at which point Zonealarm
lites up like a Xmas tree with not 100's but 1000's of attempts to connect to an
outside server.

69.65.33.244:5500 for those of you looking to experiment.

She sent me the file and it was really a *.scr file masquerading behind a *ram
file.

Turned out to be a trojan called "backdoor.kol and it was NOT detected by
Norton/AVG or Antivir as an infected file.

I sent her instructions how to remove mstask32.exe and the registry entries.

The OS should be fixed because even reasonably savvy users will make silly
mistakes once in a while.

flatfish+++

flatfish+++ <flatfish@linuxmail.org> wrote:
The most... well... one of the most...
Errr.... OK. One of the many enormously stupid ideas microsoft ever came up
with was "extension hiding".

In an OS where filename extensions are needed (that's another one of their
stupid ideas), actually actively HIDING them from the used, so something as
simple as filename.jpg.exe will appear as a jpeg file... well...