Ok, this one's a bit more complex. What you are looking at is an URL with a
username:password@domain format. You can read about it here:
http://www.gnu.org/manual/wget-1.8.1/html_node/wget_3.html
In the URL for the phony sign-in page, the domain that you are connecting to
is DK3.COM (more specifically, "e3bay.home7.dk3.com"). The URL specifies the
username "cgi3.ebay.com," and a lengthy password. The scammer has made the
username look like a legitimate eBay link.
It's easy to click on one of these by mistake. I've done it myself on at
least one occasion.
-Mark
> -----Original Message-----
> From: Randall Young
> Sent: Monday, March 10, 2003 6:03 AM
> To: british-cars@autox.team.net
> Cc: Triumphs
> Subject: RE: Ebay Scam
>
> However, through the miracle of HTML, what you see is not what you get,
the
> actual link is
>
"http://cgi3.ebay.com:aw-cgieBayISAPI.dllSignInRegisterEnterInfo&siteid=
> 0co_partnerid=2@e3bay.home7.dk3.com/"
> which is a redirect to a phony sign-in page.
/// triumphs@autox.team.net mailing list
/// or try http://www.team.net/cgi-bin/majorcool
/// Archives at http://www.team.net/archive
|