LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-18-2005, 08:12 PM   #1
radiojohn
LQ Newbie
 
Registered: Aug 2004
Location: Near La Crosse WI
Distribution: Mandrake 10
Posts: 4

Rep: Reputation: 0
eBay spoof using Linus servers


alexu.org.previewyoursite.com

The above site is the source (according to NeoTrace) of the latest "spoof" email I got that tries to get you to give up your eBay information. I have noticed a number of Linux test servers are now used for spoofing.

What's up with this? Are the servers being hacked or are these folks somehow building servers for the purpose of spoofing?
 
Old 05-18-2005, 08:21 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
If that was simply the "from" address of the email, then those are extremely easy to forge. To get a better idea of the source, look at the full email header for the originating address (still spoofable) or even better, if the phishing email contains html, look at the page source for the links to the hax0red site. From my experience, the "from header" is always forged, the originating address is usually a blacklisted spam-friendly machine, and the actual website that the html links point to is the only truly hacked server.
 
Old 05-19-2005, 08:43 AM   #3
TruckStuff
Member
 
Registered: Apr 2002
Posts: 498

Rep: Reputation: 30
But to answer your original question, mote than likely these are servers that are being p0wned. Why would you want to spend money on a server when there are plenty of boneheads on the net running unpatched servers that can be owned with minimal effort?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to spoof the ip ! Anafura Linux - General 2 01-02-2005 06:14 PM
Samba spoof wslyhbb Linux - Networking 3 05-28-2004 06:17 PM
PHP IP Un-Spoof??? bfloeagle Programming 1 03-25-2004 08:13 AM
program to spoof my IP juanb Linux - Security 6 09-18-2003 05:03 PM
How to spoof our ip?? zLinuxz Linux - Networking 2 04-19-2002 11:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:10 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration