From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 97247 invoked by alias); 10 Jun 2016 01:20:17 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 97231 invoked by uid 89); 10 Jun 2016 01:20:17 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=2.0 required=5.0 tests=BAYES_50,FREEMAIL_FROM,KAM_THEBAT,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=no version=3.3.2 spammy=H*UA:Bat!, H*x:Bat!, H*M:yandex, H*UA:Home X-HELO: forward3m.cmail.yandex.net Received: from forward3m.cmail.yandex.net (HELO forward3m.cmail.yandex.net) (5.255.216.21) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with (AES256-GCM-SHA384 encrypted) ESMTPS; Fri, 10 Jun 2016 01:20:06 +0000 Received: from smtp1m.mail.yandex.net (smtp1m.mail.yandex.net [77.88.61.132]) by forward3m.cmail.yandex.net (Yandex) with ESMTP id 0FE3720F77 for ; Fri, 10 Jun 2016 04:20:02 +0300 (MSK) Received: from smtp1m.mail.yandex.net (localhost [127.0.0.1]) by smtp1m.mail.yandex.net (Yandex) with ESMTP id E4A786740695 for ; Fri, 10 Jun 2016 04:20:02 +0300 (MSK) Received: by smtp1m.mail.yandex.net (nwsmtp/Yandex) with ESMTPSA id 9lC6KE4Myp-K27KrVau; Fri, 10 Jun 2016 04:20:02 +0300 (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (Client certificate not present) Authentication-Results: smtp1m.mail.yandex.net; dkim=pass header.i=@yandex.ru X-Yandex-Suid-Status: 1 0,1 0 Received: from [192.168.1.10] (HELO daemon2.darkdragon.lan) by daemon2 (Office Mail Server 0.8.12 build 08053101) with SMTP; Fri, 10 Jun 2016 01:06:41 -0000 Date: Fri, 10 Jun 2016 01:20:00 -0000 From: Andrey Repin Reply-To: cygwin@cygwin.com Message-ID: <916584443.20160610040640@yandex.ru> To: Corinna Vinschen , cygwin@cygwin.com Subject: Re: malware In-Reply-To: <20160609161421.GA15058@calimero.vinschen.de> References: <0D835E9B9CD07F40A48423F80D3B5A7039D920C3@USA7109MB022.na.xerox.net> <3227b657-3712-966a-45ed-2bdd0d96d7c3@gmail.com> <20160609161421.GA15058@calimero.vinschen.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-IsSubscribed: yes X-SW-Source: 2016-06/txt/msg00147.txt.bz2 Greetings, Corinna Vinschen! > On Jun 9 18:02, Marco Atzeri wrote: >> On 09/06/2016 17:52, Jack Adrian Zappa wrote: >> > Are you referring to the 83.dotm file? Looks highly suspicious. o.O >> > >> >> It is clearly spam or worse. >> >> But some of them will always pass whatever filter the cygwin mail >> server is implementing. >> Some of them are reaching any mailbox also company's one. > I can only agree with Marco. Sourceware is running an agressive spam > assassin and what not which gets constantly upgraded and fed with known > spam regulary to hone the filters. However, there's *no* way it will > always catch all spam or virus or worm. If so, it would probably also > catch lots of legit mails. It already does the latter regularly. :( I.e. I don't see at least one of my latest mails to the list. But I do see a reply to it, presumable sent in reply to a CC'd copy because addressee not being properly subscribed to the list. -- With best regards, Andrey Repin Friday, June 10, 2016 04:04:53 Sorry for my terrible english... -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple