Thanks for all the suggestions. Paul. P.A > -----Original Message----- P.A > From: squirrelmail-users-bounces@xxxxxxxxxxxxxxxxxxxxx P.A > [mailto:squirrelmail-users-bounces@xxxxxxxxxxxxxxxxxxxxx] On Behalf Of P.A > John Fawcett P.A > Sent: Thursday, July 03, 2008 1:57 AM P.A > To: Squirrelmail User Support Mailing List P.A > Subject: Re: squirrelmail used for spam P.A > P.A > -----BEGIN PGP SIGNED MESSAGE----- P.A > Hash: SHA1 P.A > P.A > Hal Pollenz wrote: P.A > | Here is what is probably happening ( it happened to us last week ) P.A > | Spammers are sending very specific pfishing emails, sample below. P.A > | Stupid users are responding with their passwords. P.A > | Lots of log checking and quick disabling of accounts is about all P.A > you P.A > | can do P.A > | assuming you do not have the power to terminate users for being this P.A > dumb P.A > | ---- one sample ----- P.A > | P.A > | ---------- P.A > | P.A > One of the things I did to avoid dictionary attacks against weak P.A > passwords was to implement the minimum password security rules P.A > available with the Change SQL Password plugin. I then set a force P.A > change password to true for those accounts that did not meet the P.A > minimum security. Users who login will get directed to the change P.A > password screen. P.A > P.A > To be able to do this (without forcing everyone to change passwords) P.A > you need to have passwords stored in the database in plain text. P.A > P.A > This does not help lock out already compromised accounts, but P.A > makes it harder for accounts to be compromised in the first place. P.A > P.A > John P.A > -----BEGIN PGP SIGNATURE----- P.A > Version: GnuPG v2.0.9 (GNU/Linux) P.A > Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org P.A > P.A > iEYEARECAAYFAkhsakIACgkQd4I3jTtt9EIICACfQwpF4GGvjB6EGEPwajNoLiTk P.A > uc8An3C5KEBmJaJb6xZFveyKzU/kgAAy P.A > =aNqQ P.A > -----END PGP SIGNATURE----- P.A > P.A > ---------------------------------------------------------------------- P.A > --- P.A > Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! P.A > Studies have shown that voting for your favorite open source project, P.A > along with a healthy diet, reduces your potential for chronic lameness P.A > and boredom. Vote Now at http://www.sourceforge.net/community/cca08 P.A > ----- P.A > squirrelmail-users mailing list P.A > Posting guidelines: http://squirrelmail.org/postingguidelines P.A > List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx P.A > List archives: http://news.gmane.org/gmane.mail.squirrelmail.user P.A > List info (subscribe/unsubscribe/change options): P.A > https://lists.sourceforge.net/lists/listinfo/squirrelmail-users P.A > No virus found in this incoming message. P.A > Checked by AVG. P.A > Version: 8.0.134 / Virus Database: 270.4.4/1531 - Release Date: P.A > 7/2/2008 7:02 PM ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
