Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: NEVER open attachments
From: Nico Golde <nion () gmx net>
Date: Sat, 20 Mar 2004 11:56:38 +0100

Hallo Jeremiah,

* Jeremiah Cornelius <jeremiah () nur net> [2004-03-20 11:03]:
Valdis.Kletnieks () vt edu <Valdis.Kletnieks () vt edu>, Nico Golde, Frank >
Knobbe, et al have wonderful things to say and contribute great 
things to this list, but i have never read anything they post because 
they post as attachments. 
Yes, granted, they are .txt attachments but that is no excuse as it's >
just a matter of time before they are exploited. 

The blinking signing is so that you CAN trust the source!  Assuming you have
verified the sender's key and trust them for safe practices, open
attachments 'till you get RSI!  The NEVER OPEN rule is a dogma for
unverified senders - you /knew/ that.

i think the philosophy of never open attachments is only true if your
mailer sucks.
regards nico
-- 
Nico Golde                | nico () ngolde de      | 310777820 () ICQ | nion () gmx net
http://www.ngolde.de      | GnuPG Key: http://www.ngolde.de/gpg/nico_golde.gpg
Fingerprint               | FF46 E565 5CC1 E2E5 3F69  C739 1D87 E549 7364 7CFF 
echo             "[q]sa[ln0=aln256%Pln256/snlbx]sb729901041524823122snlbxq"|dc

Attachment: _bin
Description:


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]