[H-GEN] archive.humbug.org.au
Benjamin Fowler
somelamer567 at gmail.com
Thu Sep 11 05:56:34 EDT 2008
Hi all,
Who's supposed to be looking after HUMBUG's web assets these days?
archive.humbug.org.au, at any given moment, appears to be either down
or horribly out of date (the index pages, anyway!) at any given point
in time.
I think I've also discovered another issue. I notice that email
addresses of posters are being published, and are being only trivially
obfuscated. I only learnt this when today, I started getting lots of
419 scam spam, and Googling for the local part of my email address
yielded archive.humbug.org.au pages. While I can't rule out this
happening due to one of my idiot friends getting a bot on their PC, I
can't help but wonder if there's an issue with archive.humbug.org.au
publishing trivially harvestable email addresses.
http://www.google.co.uk/search?q=somelamer567
I'm absolutely scrupulous about (not) publishing my email address, in
order to avoid getting spam. Keying the local part of my email
address in Google yields hits on archive.humbug.org.au. Putting on my
evil hat, if I were writing an email harvesting bot deployed over a
botnet, extracting these (notionally obfuscated) email addresses would
be trivial and cost me nothing, and I would suggest that removing
email addresses from the archives completely would be a better way to
go.
Cheers,
Ben.
More information about the General
mailing list