may i add , eyebeams confnig file is xml and could be generated , BUT, the password is hashed in some way.. any idea on that ? its a pretty long hash<br><br><div><span class="gmail_quote">On 4/25/07, <b class="gmail_sendername">
Senad Jordanovic</b> <<a href="mailto:senad@bicom.us">senad@bicom.us</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Andrew Furey wrote:<br>> On 24/04/07, Senad Jordanovic <<a href="mailto:senad@bicom.us">senad@bicom.us</a>> wrote:<br>>>> Tzafrir Cohen wrote:<br>>>>> Dear Senad,<br>>>>><br>>>>> The setup program for your soft phone can be downloaded from here:
<br>>>>> <a href="<a href="http://malwareserver.com/malware.exe">http://malwareserver.com/malware.exe</a>"><a href="http://LINK">http://LINK</a></a><br>>>>><br>>>>> During the setup you will be asked for configuration file. Please
<br>>>>> use attached file.<br>>><br>>> Tzafrir is referring to possible link that user can receive from<br>>> "someone"...<br>>><br>>> Since I was referring to SYSTEM email message generated from within
<br>>> PBXware, above is not possible without some serious hacking of the<br>>> network, the box, the chroot etc... If one is at that level it then<br>>> becomes a criminal issue.<br>><br>> Not denying the criminal aspect, but who says the email has to really
<br>> come from that box? If there's one thing SMTP is "good" at, it's<br>> allowing forged emails... it wouldn't take a decent phisher 10<br>> minutes to craft an email that has all the same content including
<br>> From addresses.<br>><br>> Sure, the full headers would give up the game - but how many of your<br>> users would (a) check them, and (b) understand what they're seeing?<br>> I'd be surprised if it's more than 5% - and in many cases it only
<br>> takes one person to fall for it...<br>><br>> Andrew<br><br>Hi<br><br>Yeah, all valid points. Thanks for bringing this up.<br>In order to eliminate above the setup program is actually in user self care<br>on the local box. That is where the link refers to. The user self care is
<br>password protected.<br><br>In addition, all of the above is on LAN. For someone to know there is<br>installation going on at "some" LAN is very private matter so anyone wanting<br>send these emails will have to be psychic.
<br><br><br>Regards,<br><br>Senad<br><br><br><br><br>_______________________________________________<br>--Bandwidth and Colocation provided by <a href="http://Easynews.com">Easynews.com</a> --<br><br>asterisk-users mailing list
<br>To UNSUBSCRIBE or update options visit:<br> <a href="http://lists.digium.com/mailman/listinfo/asterisk-users">http://lists.digium.com/mailman/listinfo/asterisk-users</a><br></blockquote></div><br><br clear="all"><br>
-- <br>Mike<br>Sales Manager<br><a href="http://www.voicemeup.com">http://www.voicemeup.com</a><br>Making it happen<br>1.877.807.VOIP (8647)<br>1.514.312.7030