FW: Sircam infects the Feds

[Richard Clayton]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

In article <00f701c11701$a239aee0$1e01320a@Drizzt>, Nexus
<nexus@patrol.i-way.co.uk> writes

>hence the other current fave of sending that little 42.zip file
>that kills certain AV/content filtering email gateways ;-)
>(42.zip is a specially constructed zip file that is 42K in size, but when
>fully expanded end up at about 4Gb)

nothing new under the sun :-(

this attack was used against the MIT anon remailer prior to 1998

     ftp://cag.lcs.mit.edu/pub/dm/papers/mazieres:pnym.pdf

>Since I'm rapidly drifting off of the list mandate, I'll stop there..

     "The only thing we learn from history is that we learn nothing from
     history."
                               Hegel ... though I see that a fair number
                               of web sites ascribe it to Cicero !

- -- 
richard @ highwayman . com                       "Nothing seems the same
                          Still you never see the change from day to day
                                And no-one notices the customs slip away"

-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1

iQA/AwUBO2LC0BfnRQV/feRLEQKDYgCfWQDLWT42wpNGRcRvCmABy9u6yWgAoMlo
PHn/XJQnp5ogm/o0aiLJin4o
=bVmW
-----END PGP SIGNATURE-----