[tor-talk] root at runonhot.xyz tries to deanonymize me

Oskar Wendel o.wendel at wp.pl
Thu Jun 30 21:18:52 UTC 2016 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I used the email I'm posting from only on this list. I participated mainly 
in topic related to traffic correlation attacks.

Today I received an email, which I'm posting completely with the headers 
below (I only edited my email address to avoid spam, and numbers in the 
link). This email was designed so my true IP address will be logged on the 
attacker server as soon as I open it.

If you use a mail client that automatically shows pictures or has a 
connection to the Internet and supports HTML, then be warned and delete 
suspicious emails without opening them.

Email subject is in Polish and reads "Fuck ? :-@".

- ----- CUT HERE -----
Return-Path: <root at runonhot.xyz>
Delivered-To: o.wendel@@wp.pl (o.wendel)
Received: from mx2.runonhot.xyz ([93.158.206.84])
          (envelope-sender <root at runonhot.xyz>)
          by mx.wp.pl (WP-SMTPD) with SMTP
          for <o.wendel@@wp.pl>; 30 Jun 2016 16:25:44 +0200
To: o.wendel@@wp.pl
Subject: =?UTF-8?B?UGllcmRvbGnEhyA/IDotQA==?=
Message-ID: <e06fcb2c52ec4ff8cb005ee92d34a8f8 at runonhot.xyz>
Date: Thu, 30 Jun 2016 16:25:44 +0200
From: "Bartosz Sulkowski" <root at runonhot.xyz>
Reply-To: root at runonhot.xyz
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: 8bit

<html><head></head><body><br/>  <br>
<img
src="http://runonhot.xyz/open.php?M=6[number edited out]1&L=3[number edited out]8&N=1[number edited out]6&F=H&image=.jpg"
height="1" width="10"></body></html>
- ----- CUT HERE -----

- -- 
Oskar Wendel, o.wendel at wp.pl.REMOVE.THIS
Pubkey: http://pgp.mit.edu/pks/lookup?op=get&search=0xB5E3846CD40F08E3
-----BEGIN PGP SIGNATURE-----

iQEcBAEBAgAGBQJXdYyvAAoJELXjhGzUDwjjZ+cIAISrycTXwori1mZ8w33DPmzX
hq18FiQKCZ03jc7JKYmaL+8bqtOwq40ECBVAWZslnEV2mrUdMeeaMqojyaAO8oGG
iwn8PZtt/FtTj1H89Ou1B8WiFmSansIUxhP10hySdBwpB/xGOVAmU2dpyvMHttzw
WtB+6ddyJN1xeT2lCaxYrPmoGTbuFizvhgs5EVdD0Qnq+3nMBlLMM/2/or5j8Q4w
XiPwDcOMvkb1wQRJ2TYTIVOYf6LJu5/3wT0qLwaNwHd4iHg/Mus3wW5+R3k2LAoC
Q6oH0klVZP5jtvFy8EGOAvN1+mmrPv/G00CoHxCbzXluW18I6T1JjTAcB+KM+fk=
=0vX8
-----END PGP SIGNATURE-----

More information about the tor-talk mailing list