Hi Jesse. Thanks for the reply. It's nice to know it's not the list that's been compromised. I rapidly ran chkrootkit on the machine in the usual paranoid way, but it shows all clear. I'm more concerned that perhaps one of tiscali.fr mailservers has been hit. Particularly with the ammount of spam and scams I'm getting with loads of CC's directed to tiscali.fr clients. I had hardly any unsolicited mail when I was in England on a freeserve/ wanadoo account. Keep up with the good work, FC1 is still going well. Nigel. On Monday 15 Aug 2005 7:36 pm, Jesse Keating wrote: > On Mon, 2005-08-15 at 18:39 +0100, nigel henry wrote: > > Just received and email supposedly from Fedora Legacy. It just has > > subject Re: And a From address: "Fedora-legacy" > > <fedora-legacy@xxxxxxxxx>. Also has an attachment Garry .cpl. I will > > post the email complete with all headers to anyone there who wants to > > have a look at it. Nigel. > > It is highly unlikely that this list is being farmed. IT takes a > subscription to see addresses subscribed, and while the archives are > public, this list is not exactly prime target for spammers. > > What you are seeing is that the first part of the address is being > spoofed, most likely pulled from some Windows user's address book or > inbox, then sent to everybody else in that user's address book or inbox. > It is Joe-Jobbing. Not a damn thing we can do about it. -- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list