RE: [Asrg] seeking comments on new RMX article

["Eric D. Williams" <eric@infobro.com>]

On Tuesday, May 06, 2003 12:30 PM, J C Lawrence [SMTP:claw@kanga.nu] wrote:
> On Tue, 6 May 2003 11:42:47 -0400
> Damian Gerow <damian@sentex.net> wrote:
>
> > So all that really happens is that things like open relays and open
> > proxies become less and less valuable, and anonymous remailers become
> > infinitely more popular.  However, they are no more /valuable/ than
> > they are right now -- the provide the same service, they do the same
> > thing.
>
> We currently have compromised Windows systems being used as spam
> origination points.  Are we next going to see such zombie systems used
> as anonymous remailers?  Or are they more likely to use the compromised
> system to extract appropriate mailing credentials to tack onto spam
> (creds which for instance satisfy RMX etc)?

How would such an attack work?  Although you present an interesting issue re: 
security and 'zombie' eMail  how would RMX break (if that is your implication) 
in the proposed scenario.  What credentials other than domain name and IP 
address would satisfy an RMX query if stolen?  In any event the 'zombie' (or 
maybe zonebie is better :) would be a security concern first and a spam 
origination concerns second IMHO.

-e
_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg