I was thinking more of having an HTML email in my fake web mail account that
would reference an image on an offsite webserver I control. Therefore, _if_
they would open that email I would see it pop up in the logs. I could even
do a web bug so it looked like a normal text email.

Tyler

-----Original Message-----
From: William Salusky [mailto:changedmzs.com]
Sent: Thursday, March 14, 2002 10:17 PM
To: Hudak, Tyler; 'honeypotssecurityfocus.com'
Subject: Re: harvester honeypots

Hey Tyler,

Though I do not have any recommendations on how to determine the successful
access of a harvester, I can pretty much say that it is not likely that a
harvester is going to pull down image files or following embedded html
links.

I've spent a fair amount of time working on financial aggregation engines
and
as a rule they do NOT pull that stuff down.

William
changedmzs.com

---------------------------------------------------------------------
To unsubscribe, e-mail: honeypots-unsubscribesecurityfocus.com
For additional commands, e-mail: honeypots-helpsecurityfocus.com
---------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert
(SIA) Service. For more information on SecurityFocus' SIA service
which automatically alerts you to the latest security vulnerabilities.
Please, see: https://alerts.securityfocus.com/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]