[Lvlug] Test

John coyote722 at embarqmail.com
Sat May 29 01:24:08 PDT 2010 

Hi,
  I did have the same password for gmail and Facebook, but not Yahoo. I 
don't use adobe reader often but javascript is enabled. I just added no 
script add on for firefox. Thanks for that info, never heard of it. 
Where would a malicious script reside?
 John D

Jeff Rosowski wrote:
> Silly question, but did you use the same password on each account?  If 
> so your password could have gotten phished via what looked like a 
> facebook login.
>
> Also you should be using the noscript plugin with firefox (yes even if 
> you are running linux this is a good idea) a lot of times a site which 
> is perfectly legitimate will get exploited, and will try to load nasty 
> javascipt from a 3rd party site, which in turn loads more nasty 
> javascipt/malware, etc...
>
> Third, disable javascipt in adobe reader if you use it.  Lots of 
> nastiness there as well.
>
> perl -e 's++=END;++y(;-P)}\n?k++=;<+xru}?print:??;'
>
> ------------------------------------------------------------------------
> On May 28, 2010 16:46, John <coyote722 at embarqmail.com> wrote:
>
> Hi,
> Now that everybody has passed the test I just want to apologize for
> the phishing scam. My Yahoo and Gmail accounts were cracked. I think
> Facebook played a role but can't be sure. Thanks for all the money you
> sent to get me out of England.
>
> The question is how did they do it. How can they run a crack against
> my passwords at both Yahoo and Gmail. They did not crack my computer. I
> use Ubuntu 8.04LTS and only port 25 and 80 are accessible through my
> router. I also use snort and did not detect any unusual activity. Is it
> possible to bypass the 3 tries and your out when logging in to those
> accounts? I also ran Nessus to look for vulnerabilities and found
> nothing they could exploit to gain access. My password file would not
> be on my PC for those accounts.
>
> Glad to be back,
> John D
> Thomas Phipps wrote:
> > FALSE
> > on Fri, May 28, 2010 at 02:11:06PM -0700, John spewed:
> >
> >> Test
> >>
> > _______________________________________________
> > Sent via the Lvlug mailing list Lvlug at lvlug.org
> > Set options or unsubscribe at http://lvlug.org/mailman/listinfo/lvlug
> > The Lvlug mailing list is hosted courtesy of LasVegas.Net
> >
> >
>
> _______________________________________________
> Sent via the Lvlug mailing list Lvlug at lvlug.org
> Set options or unsubscribe at http://lvlug.org/mailman/listinfo/lvlug
> The Lvlug mailing list is hosted courtesy of LasVegas.Net
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Sent via the Lvlug mailing list Lvlug at lvlug.org
> Set options or unsubscribe at http://lvlug.org/mailman/listinfo/lvlug
> The Lvlug mailing list is hosted courtesy of LasVegas.Net
>

More information about the Lvlug mailing list