From owner-freebsd-questions  Thu Jun 27 14:53:36 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from raq02.vbcomm.net (raq02.vbcomm.net [208.178.120.34])
	by hub.freebsd.org (Postfix) with ESMTP id 1D82F37B40B
	for <freebsd-questions@FreeBSD.ORG>; Thu, 27 Jun 2002 14:53:10 -0700 (PDT)
Received: from mrincubator.org (vpn.ckhlaw.com [208.178.123.53])
	by raq02.vbcomm.net (8.9.3/8.9.3) with ESMTP id RAA08301;
	Thu, 27 Jun 2002 17:53:04 -0400
Message-ID: <3D1B8952.902BCDE1@mrincubator.org>
Date: Thu, 27 Jun 2002 17:53:22 -0400
From: Mark Filipak <filipak@mrincubator.org>
X-Mailer: Mozilla 4.77 [en] (Win98; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Kent Stewart <kstewart@owt.com>
Cc: burningclown@westhost43.westhost.net,
	Matt Snow <drama@slakin.net>, freebsd-questions@FreeBSD.ORG
Subject: Re: Please confirm your request to join Gel_Candle_News
References: <Pine.LNX.4.44.0206271322310.30151-100000@westhost43.westhost.net> <3D1B597A.1000404@owt.com> <3D1B5B43.6EBF3303@mrincubator.org> <3D1B5DFA.7090606@owt.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Ooops, update:

I just checked my "List Owner" mailbox (filter: -owner@) and there they
are: five messages from believers_hope. I guess that answers my question
about spoofing the confirmation -- this person must have done it.

Why don't more people do this and bring back the dreaded list bomb
...erm... I guess this person did, eh?

Never mind. -- Mark

Kent Stewart wrote:
> 
> Mark Filipak wrote:
> 
> > Kent Stewart wrote:
> >
> >>burningclown@westhost43.westhost.net wrote:
> >>
> >>>I suspect a young person thinks it is very funny to do this.
> >>>School's out, after all.
> >>>
> >>It still amounts to identity fraud and their original requests
> >>probably have their IP address, which will allow their ISP to
> >>permenantly remove their access.
> >>
> >
> > These are coming from YahooGroups. Anyone can browse to the list
> > signup and enter anything they want, including
> > president@whitehouse.gov.
> >
> > Identity fraud not required. Traceablity = zero.
> 
> That part may be true; however, when the send the required response
> back, they should be traceable.

They don't send the required response, Kent. Only an email from
freebsd-questions@FreeBSD.ORG can confirm the request to join. This
person could spoof that, but maybe doesn't know how.

(...I must confess that given the ability to spoof headers in a phoney
confirmation I don't understand how confirmations prevent listbombs...)

This will end soon as this vengeful person has to cause each of these
confirmations manually -- I don't think requests to YahooGroups can be
automated in any browser.

Ciao -- Mark

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message