[SC-Help] Re: Opening spam insecure?

[DougW]

Mike Easter did pass the time by typing:
> Erin wrote:
>> Don't I have to open spam to report it? I've been told to not open
>> spam, but SpamPal doesn't work with web interfaces. Is it secure to
>> open junkmail with web interfaces in order to copy/paste and/or
>> forward?


Generally, no.  You have no idea what payload the message may have.
Some use specific URLs to validate live email accounts or pull
other shenanigans.

> Is it absolutely necessary that hotmail must be opened to be reported?
>
> Be careful about interpreting my remarks about not opening spam.  Many
> solid antispammers don't exactly see eye-to-eye with me about that, and
> my position sounds somewhat extreme and other strategies than mine which
> do involve opening spam may be employed, if done 'properly'.

Sadly, hotmail doesn't have a safe view method.
(doesn't keep you from suggesting one though)
Just a way to view the source by enabling advanced headers.
http://www.spamcop.net/fom-serve/cache/22.html


-- 
rbg
head kook and wattle bosher, revbeergoggles.com