From: Luke S. <lsc...@us...> - 2005-03-24 17:55:57
|
On Thu, Mar 24, 2005 at 11:15:21AM -0600, Jim Sabatke wrote: > Hi, > > I just compiled and installed gaim 1.2.0 on my SuSE 9.0 box a few days > ago. This morning I had a bunch of Yahoo messages from people asking > why I sent them to an Easter card URL that doesn't work. I never sent > any such thing. > > This concerns me. I don't know who to contact as the gaim pages don't > have an email list or forum. > > Can you help? > > Thanks, How did you install gaim? you compiled it yourself? did your friends get this card url via IM? or email? Gaim would not be doing this itself as we distribute it, and I do not know of any way for someone to cause gaim to send a message to people. the most likely thing I can think of is that this came from email, or that someone has figured out your Y!M password. luke > > Jim |
From: Peter L. <spa...@si...> - 2005-03-24 21:27:43
Attachments:
spam_spam_spam_and_spam.vcf
|
Luke Schierer wrote: >On Thu, Mar 24, 2005 at 11:15:21AM -0600, Jim Sabatke wrote: > > >>Hi, >> >>I just compiled and installed gaim 1.2.0 on my SuSE 9.0 box a few days >>ago. This morning I had a bunch of Yahoo messages from people asking >>why I sent them to an Easter card URL that doesn't work. I never sent >>any such thing. >> >>This concerns me. I don't know who to contact as the gaim pages don't >>have an email list or forum. >> >>Can you help? >> >>Thanks, >> >> > >How did you install gaim? you compiled it yourself? did your friends >get this card url via IM? or email? > >Gaim would not be doing this itself as we distribute it, and I do not >know of any way for someone to cause gaim to send a message to people. >the most likely thing I can think of is that this came from email, or >that someone has figured out your Y!M password. > >luke > > > Yahoo also has an underground of crackers that will brute force attack a password. In my experience, however, once they've cracked the password, they tend to change it. If you've managed to frequent a room that those teams use, or have managed to annoy someone who has contact with those teams, you're password (if not secure enough) will end up being toast. Regards, Bleeter. |
From: Jim S. <jsa...@sb...> - 2005-03-24 22:04:47
|
Luke Schierer wrote: >On Thu, Mar 24, 2005 at 11:15:21AM -0600, Jim Sabatke wrote: > > >>Hi, >> >>I just compiled and installed gaim 1.2.0 on my SuSE 9.0 box a few days >>ago. This morning I had a bunch of Yahoo messages from people asking >>why I sent them to an Easter card URL that doesn't work. I never sent >>any such thing. >> >>This concerns me. I don't know who to contact as the gaim pages don't >>have an email list or forum. >> >>Can you help? >> >>Thanks, >> >> > >How did you install gaim? you compiled it yourself? did your friends >get this card url via IM? or email? > > I compiled it myself. The only ./configure switch I used was --prefix. The card URL was sent via IM and only Yahoo addresses were used that I know of. I had left gaim on overnight as MSN folks like to leave messages, which they can't do if it's off. >Gaim would not be doing this itself as we distribute it, and I do not >know of any way for someone to cause gaim to send a message to people. >the most likely thing I can think of is that this came from email, or >that someone has figured out your Y!M password. > >luke > > I suppose this is possible. If I'm the only one having this problem, then it is more likely. AFAIK though, if someone had logged into YM, then my session would have gone dormant overnight, right? Thanks, Jim |
From: Peter L. <spa...@si...> - 2005-03-24 22:51:05
|
Jim Sabatke wrote: > Luke Schierer wrote: > >> On Thu, Mar 24, 2005 at 11:15:21AM -0600, Jim Sabatke wrote: >> >> >>> Hi, >>> >>> I just compiled and installed gaim 1.2.0 on my SuSE 9.0 box a few >>> days ago. This morning I had a bunch of Yahoo messages from people >>> asking why I sent them to an Easter card URL that doesn't work. I >>> never sent any such thing. >>> >>> This concerns me. I don't know who to contact as the gaim pages >>> don't have an email list or forum. >>> >>> Can you help? >>> >>> Thanks, >>> >> >> >> How did you install gaim? you compiled it yourself? did your friends >> get this card url via IM? or email? >> > I compiled it myself. The only ./configure switch I used was --prefix. > > The card URL was sent via IM and only Yahoo addresses were used that I > know of. I had left gaim on overnight as MSN folks like to leave > messages, which they can't do if it's off. Hmm, as you left yourself logged in, if someone had stolen your password and logged in, the yahoo servers should've logged gaim out. I'm beginning to wonder if someone's just cloned your nickname (not your ID), and sent messages and the recipients which have complained haven't noticed the difference, or whether you've managed to leave your machine open to compromise. Regards, Pete. |
From: Tim R. <tim...@co...> - 2005-03-24 23:14:35
|
> This morning I had a bunch of Yahoo messages from people asking > why I sent them to an Easter card URL that doesn't work. I never sent > any such thing. Any idea how you might purposely send such a thing? Is it like a special thing, or just a normal IM? Considering the URL didn't work, it's not imposbbile some bug caused gaim to send some packet that I'm not aware exists that says "send bad url to entire buddy list". > This concerns me. I don't know who to contact as the gaim pages don't > have an email list or forum. Um, we have both. --Tim |