Not all subscribers realize the need for putting a subject line. I have quite often in my years of subbing to lists and adminning lists had tons of messages with no subject lines that were legit messages, so if they all went to the great cyber space then it might be legit messages going elsewhere also. I have everything set so that everything FROM ROOTSWEB comes to me UNLESS Earthlink actually finds a virus and then it notifies me that it did not send the offending message. I still have the option of checking it if I choose, which I usually do not. This is me and how I admin my lists...every one is different in their admin styles, I just prefer knowing what is coming from RW and I get very little spam hitting my inbox. Lainee -----Original Message----- From: Deloris Williams Sent: Monday, July 16, 2012 11:40 AM Cc: listowners@rootsweb.com Subject: Re: [LO] Preventing Spam on Lists AOL users were by far, the majority of the SPAM that I saw last week. They hit not only my lists, but just about all of the additional 50 or so lists I'm subbed to. What I'd like to know, isn't there some way that RW can prevent messages with "No Subject" hitting the lists? In my own email client, I have set such messages to go to my junk mail folder, so I don't see why it would be so difficult to set the RW filters for something similar. Deloris Williams

AOL users were by far, the majority of the SPAM that I saw last week. They hit not only my lists, but just about all of the additional 50 or so lists I'm subbed to. What I'd like to know, isn't there some way that RW can prevent messages with "No Subject" hitting the lists? In my own email client, I have set such messages to go to my junk mail folder, so I don't see why it would be so difficult to set the RW filters for something similar. Deloris Williams -------------------------------------------------- From: "Carl Hommel" <chommel6@comcast.net> Sent: Sunday, July 15, 2012 9:52 PM To: "W David Samuelsen" <dsam52@sampubco.com> Cc: <listowners@rootsweb.com> Subject: Re: [LO] Preventing Spam on Lists > The one I had and the one I received from another List were both AOL. My > List was Bausch, and the one I saw went to Wells (to which I subscribe), > with a copy to Wright, so they went from B to W in three days. > Carl Hommel > > -----Original Message----- > From: W David Samuelsen > Sent: Sunday, July 15, 2012 8:31 PM > Cc: listowners@rootsweb.com > Subject: Re: [LO] Preventing Spam on Lists > > I haven't seen a single Yahoo hacked arriving for my attention, let > alone other lists. > > David S. > > On 7/15/2012 5:13 PM, JYoung6180@aol.com wrote: >> David- >> >> The latest round of hacked emails was Yahoo...although AOL has had the >> problem in the past. This time it was Yahoo. Almost always it seems to be >> Web >> based accounts that get hacked. >> >> Joan >> > > > ------------------------------- > To unsubscribe from the list, please send an email to > LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the > quotes in the subject and the body of the message > > > ------------------------------- > To unsubscribe from the list, please send an email to > LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the > quotes in the subject and the body of the message

I have seen Yahoo hijacked accounts and also gmail accounts. I don't recall seeing any hotmail accounts but then again I haven't been paying much attention to them of late. I just delete and move on unless it's a list that I admin then I moderate the account and report it to the listmaster. I had my ISP account hijacked (roadrunner) which is an email address that I never use. I only realized it was hijacked because it's set up to forward mail to my gmail account. I also had an AIM account hijacked and this was an account that I thought was closed and I had forgotten all about it. Joan Asche On Sun, Jul 15, 2012 at 8:31 PM, W David Samuelsen <dsam52@sampubco.com> wrote: > I haven't seen a single Yahoo hacked arriving for my attention, let > alone other lists. > > David S. > > On 7/15/2012 5:13 PM, JYoung6180@aol.com wrote: >> David- >> >> The latest round of hacked emails was Yahoo...although AOL has had the >> problem in the past. This time it was Yahoo. Almost always it seems to be Web >> based accounts that get hacked. >> >> Joan >>

The one I had and the one I received from another List were both AOL. My List was Bausch, and the one I saw went to Wells (to which I subscribe), with a copy to Wright, so they went from B to W in three days. Carl Hommel -----Original Message----- From: W David Samuelsen Sent: Sunday, July 15, 2012 8:31 PM Cc: listowners@rootsweb.com Subject: Re: [LO] Preventing Spam on Lists I haven't seen a single Yahoo hacked arriving for my attention, let alone other lists. David S. On 7/15/2012 5:13 PM, JYoung6180@aol.com wrote: > David- > > The latest round of hacked emails was Yahoo...although AOL has had the > problem in the past. This time it was Yahoo. Almost always it seems to be > Web > based accounts that get hacked. > > Joan > ------------------------------- To unsubscribe from the list, please send an email to LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the quotes in the subject and the body of the message

David- The latest round of hacked emails was Yahoo...although AOL has had the problem in the past. This time it was Yahoo. Almost always it seems to be Web based accounts that get hacked. Joan In a message dated 7/15/2012 7:10:37 P.M. Eastern Daylight Time, dsam52@sampubco.com writes: If you are referring to AOL spam problem, looks like Rootsweb enginers found a way to stop them. I haven't seen a single one since Thursday morning and I subscribe to more than 100 lists plus 20 I admin. I did ask Gerhard more than a week ago about the possibility of finding a way to steer these spams to admin for review for delete or pass. Guess they found another way. David Samuelsen

Put the person under moderation until they fix the problem. You can leave them on moderated status unless or until they let you know the problem has been resolved. Don't put the entire list on moderation because one person got hacked. However: when staff does a global removal -- and the person doesn't know why (maybe they don't get the email staff sends out) and resubs...they will no longer be moderated unless you set them up as moderated after they resub. Joan In a message dated 7/15/2012 7:06:59 P.M. Eastern Daylight Time, chommel6@comcast.net writes: One of my Lists was "hacked" last week. One of my subscribers evidently caught a virus, and sent a post with no subject, and only a URL in the body. That was particularly bad because that subscriber was also on almost 50 other Lists, and Gerhardt had to do a global removal of the subscriber. I saw the same thing over the weekend on a List to which I subscribe. It is a growing problem, and we are helpless to prevent it under the instructions. I have been able to prevent this in my Lists that are gatewayed, because I have the gateways moderated. Everything that is going to the gatewayed Lists is sent to me first for approval. I want to do the same thing on my other Lists. Reading the Mailman Instructions, I see two ways to this: put the Lists on Emergency Moderation, or place each subscriber on Moderation. However, the Instructions say that; "It is recommended that individual moderation, like emergency moderation, will be a temporary setting." Is this cast in stone, and will I get into trouble if I make the moderation permanent? Is there another way I am missing? Carl Hommel

One of my Lists was "hacked" last week. One of my subscribers evidently caught a virus, and sent a post with no subject, and only a URL in the body. That was particularly bad because that subscriber was also on almost 50 other Lists, and Gerhardt had to do a global removal of the subscriber. I saw the same thing over the weekend on a List to which I subscribe. It is a growing problem, and we are helpless to prevent it under the instructions. I have been able to prevent this in my Lists that are gatewayed, because I have the gateways moderated. Everything that is going to the gatewayed Lists is sent to me first for approval. I want to do the same thing on my other Lists. Reading the Mailman Instructions, I see two ways to this: put the Lists on Emergency Moderation, or place each subscriber on Moderation. However, the Instructions say that; "It is recommended that individual moderation, like emergency moderation, will be a temporary setting." Is this cast in stone, and will I get into trouble if I make the moderation permanent? Is there another way I am missing? Carl Hommel

I haven't seen a single Yahoo hacked arriving for my attention, let alone other lists. David S. On 7/15/2012 5:13 PM, JYoung6180@aol.com wrote: > David- > > The latest round of hacked emails was Yahoo...although AOL has had the > problem in the past. This time it was Yahoo. Almost always it seems to be Web > based accounts that get hacked. > > Joan >

If you are referring to AOL spam problem, looks like Rootsweb enginers found a way to stop them. I haven't seen a single one since Thursday morning and I subscribe to more than 100 lists plus 20 I admin. I did ask Gerhard more than a week ago about the possibility of finding a way to steer these spams to admin for review for delete or pass. Guess they found another way. David Samuelsen On 7/15/2012 5:03 PM, Carl Hommel wrote: > One of my Lists was "hacked" last week. One of my subscribers evidently > caught a virus, and sent a post with no subject, and only a URL in the body. > That was particularly bad because that subscriber was also on almost 50 > other Lists, and Gerhardt had to do a global removal of the subscriber. > I saw the same thing over the weekend on a List to which I subscribe. It is > a growing problem, and we are helpless to prevent it under the instructions. > I have been able to prevent this in my Lists that are gatewayed, because I > have the gateways moderated. Everything that is going to the gatewayed Lists > is sent to me first for approval. I want to do the same thing on my other > Lists. > Reading the Mailman Instructions, I see two ways to this: put the Lists on > Emergency Moderation, or place each subscriber on Moderation. However, the > Instructions say that; "It is recommended that individual moderation, like > emergency moderation, will be a temporary setting." > Is this cast in stone, and will I get into trouble if I make the moderation > permanent? Is there another way I am missing? > Carl Hommel > > > ------------------------------- > To unsubscribe from the list, please send an email to LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the quotes in the subject and the body of the message >

Darrell said: > *I* was the one who trashed the URL, on the off chance it was > malicious -- it makes no sense to send it to the list intact to find > out! As I said, it looked OK. My point was the message -- as I > received it -- was in appearance EXACTLY like the malicious/SPAM > messages I have been getting: a link with no text, an added footer. > That it is in the archives would only mean that it hit the list, not > that it was OK. Obviously, you did send it. All is well. That was my first impression also. Unlike you, I did not stop long enough to investigate before hitting the Delete key. :-) Wendy

Carl, I apologize for what is going to be the second time you have received the earlier reply below sent to you privately. I realized after sending it to you I so, and am now replying again on the list because the information might be of benefit to others. Sorry for the duplication. Carl, I cannot in any way speak for the Listmaster (Gerhard), but it is my understanding that if spam is reported properly to him or he otherwise becomes aware of it, that removing it from the list archives is also part of the process he typically follows as a matter of routine. As for the archive removal tool, I had the same problem with it a week or two ago and was told it had some sort of "kink" in it, and to follow up using the tool with a note to the Listmaster and he will manually remove it if there remains a need to do so. It probably wouldn't hurt if you checked the archives to see if the post(s) is still there, and notify Listmaster if you find it. Hope this helps. David E. Cann decann@infionline.net -----Original Message----- From: listowners-bounces@rootsweb.com [mailto:listowners-bounces@rootsweb.com] On Behalf Of Carl Hommel Sent: Thursday, July 12, 2012 5:10 PM To: listowners@rootsweb.com Subject: [LO] Global removal I received a Bcc from Gerhardt, who removed one of my subscribers from 57 Mailing lists this afternoon, including one of mine. for multiple Spam messages. (It was of the no subject, only a URL in the body type.) I had already tried to have it removed from my list Archives, but received an error message. Should I continue to try, or will Staff do this without my interfering? Carl Hommel

I received a Bcc from Gerhardt, who removed one of my subscribers from 57 Mailing lists this afternoon, including one of mine. for multiple Spam messages. (It was of the no subject, only a URL in the body type.) I had already tried to have it removed from my list Archives, but received an error message. Should I continue to try, or will Staff do this without my interfering? Carl Hommel

On 7/12/2012 1:47 PM, W David Samuelsen wrote: > Darrell, > > your ISP corrupted it by stripping out the middle of the url before > sending to your inbox. > > A for the link I provided to the list, it is showing good. > > and for your safety measure, go to > http://lists.rootsweb.ancestry.com/index/other/RootsWeb_Support/Listowners.html > and scroll to "browse archives", then go to July 2012, and see last > message posted. > > David Samuelsen David: *I* was the one who trashed the URL, on the off chance it was malicious -- it makes no sense to send it to the list intact to find out! As I said, it looked OK. My point was the message -- as I received it -- was in appearance EXACTLY like the malicious/SPAM messages I have been getting: a link with no text, an added footer. That it is in the archives would only mean that it hit the list, not that it was OK. Obviously, you did send it. All is well. Darrell

> http://www.cn *** ahoo-users-hacked/index.html > > ------------------------------- > To unsubscribe from the list, please send an email to LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the quotes in the subject and the body of the message > > This message looks EXACTLY like a hacked account message. I don't think it is, the untrashed link actually points to where it says ... David, did you send this? Darrell

Darrell, your ISP corrupted it by stripping out the middle of the url before sending to your inbox. A for the link I provided to the list, it is showing good. and for your safety measure, go to http://lists.rootsweb.ancestry.com/index/other/RootsWeb_Support/Listowners.html and scroll to "browse archives", then go to July 2012, and see last message posted. David Samuelsen On 7/12/2012 11:54 AM, Darrell A. Martin wrote: >> http://www.cn *** ahoo-users-hacked/index.html >> >> ------------------------------- >> To unsubscribe from the list, please send an email to LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the quotes in the subject and the body of the message >> >> > > This message looks EXACTLY like a hacked account message. I don't think > it is, the untrashed link actually points to where it says ... > > David, did you send this? > > Darrell > > > > ------------------------------- > To unsubscribe from the list, please send an email to LISTOWNERS-request@rootsweb.com with the word 'unsubscribe' without the quotes in the subject and the body of the message >

http://www.cnn.com/2012/07/12/tech/web/yahoo-users-hacked/index.html

At 02:00 AM 7/12/2012, listowners-request@rootsweb.com wrote: I suspect that there are multiple acceptable password schemes out there. This is the way I do it - My ISP provides Norton suite as part of the service. Part of that is a password management scheme. I have it set to require a master password and to do autofill. That is what I use for routine access to most of the online sites requiring passwords - such as FictionDB - Hulu - I suppose that I have close to 50 entries in that db. For all my financial online stuff I use a SourceForge freeware package named Password Safe. Those passwords I access from a USB stick that I do not keep online. Generally, I load it only when I am going to a bank or credit card site - Paypal, etc. I intend to remove the USB when I close the transactions for which I loaded it - sometimes I forget. For those occasions I have the app set to close the file in a few minutes of no use. That is not an ideal - but a fallback. A couple of caveats - have two USB sticks for the password files. I use one and back up to the other from time to time. Again probably not often enough - I do have the critical passwords in two separate locations though. Also, if you decide to give Password Safe a try, be sure that you get it from SourceForge. There are at least one, maybe more commercial applications out there that purport to do what PS does - for a ridiculous fee of course. I am a lot happier to from time to time contribute cash to the developers rather than pay the licensing fees. Finally, your online security is only as good as you use it. Security must be relatively easy to use or it does not happen - it should not be so easy that a diligent attempt to crack it will succeed. Be safe! Larry

Thought I’d share our method of “remembering” and securing passwords: My husband and I have created Word documents with our passwords, then password protected those documents. We keep a copy of each others on our separate computers, and know each others passwords to open them. This way we only need to remember the “master” passwords to retrieve “forgotten” passwords. This way if one of us can’t remember for some reason, or one of our computers should crash, we know how to retrieve that information. From: singhals Sent: Tuesday, July 10, 2012 5:21 PM To: listowners@rootsweb.com Subject: Re: [LO] Secure Passwords I usta do that. Then I had a head crash. The /grief/ I went through to get access to all my sites, shouldn't happen to a dawg. In fact, I never DID get access to one site ... It's now a cobweb emeritus. ;) My point being, that if your passwords aren't written down, and your computer dies, password manager may not do you a lot of good. Cheryl Diana Gale Matthiesen wrote: > Good grief, those statistics are appalling. I sympathize with what a > PITA it is to have many passwords, but that's a good reason to use a > password manager. I log in once, at the beginning of each computer > session, then my password manager automatically fills in my passwords, > all of which are quite strong (12 or more characters long, with a mix > of lower case and capital letters, numbers, and at least one symbol). > The only password I use in more than one place is the one to my > RootsWeb mailing lists - I use one for all of them. The only > passwords I do not allow my password manager to handle are the ones to > my bank and PayPal. Those are committed to memory and not written > down, anywhere. > > Diana > >> -----Original Message----- >> From: listowners-bounces@rootsweb.com [mailto:listowners- >> bounces@rootsweb.com] On Behalf Of W David Samuelsen >> Sent: Tuesday, July 10, 2012 6:43 PM >> To: listowners@rootsweb.com >> Subject: [LO] Secure Passwords >> >> http://csis.org/blog/large-e-mail-phishing-scheme-continues-unfold >> - >> this was dated June 25, 2012. >> >> "A researcher who examined the list of stolen accounts found that >> the >> most commonly used password was "123456." Further, 42% used >> lowercase >> letters a-z and only 6% mixed alpha-numeric characters with other >> characters. 20% of the passwords were only 6 letters long. A >> recent >> report by the security firm Sophos found that 40% of people used the >> same password for every website. While phishing schemes prey on all >> users, these statistics strongly demonstrate that internet-users >> need to >> be smarter and more aware in choosing passwords that are more >> difficult >> to crack (using capitalized letters, symbols, and numbers together), >> and >> to vary the passwords they use on the internet." >> >> W. David Samuelsen

the message was supposed to go to listmaster (he is tracking and hunting them down.) David On 7/11/2012 1:07 AM, W David Samuelsen wrote:

Kathleen Decker <kdecker973@aol.com> - nycayuga