If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
|
Thread Tools | Display Modes |
#1
|
|||
|
|||
Trying to send email to myself with zip attachment
gmail account
using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? |
Ads |
#2
|
|||
|
|||
Trying to send email to myself with zip attachment
On 14/03/2018 17:29:52, Moz wrote:
gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? remove .zip when sending then add it back on when you receive it, or rename .zip to jpg then rename at the receiving end. -- mick |
#3
|
|||
|
|||
Trying to send email to myself with zip attachment
On Wed, 14 Mar 2018 10:29:52 -0700, Moz wrote:
gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? It's not the zip file itself that is the problem, but what is inside the zip file. For example, some email providers will not let you email exe files even when they are inside zip files. https://support.google.com/mail/answer/6590 . You didn't say what was inside the zip file, nor who your email provider is. -- Kind regards Ralph |
#4
|
|||
|
|||
Trying to send email to myself with zip attachment
Moz wrote:
gmail account using thunderbird latest. Will NOT use google cloud to do this ! What (or Whynot) does that sentence mean? trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? Gmail support answer: https://support.google.com/mail/answer/6590?hl=en File types blocked in Gmail Gmail solution: Put the file in google drive. Access it yourself; or if you were sending it to another, send the other the google drive link. Alternate solution: Create a gmail with the file attached but don't send it. Access the unsent mail in the gmail webmail drafts 'folder'/label. -- Mike Easter |
#5
|
|||
|
|||
Trying to send email to myself with zip attachment
Moz wrote:
gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? What are your cryptography skills like ? Files can be recognized a couple of ways: 1) File extension. The email system won't put a particular lot of weight on this, but some might consider it a "hint" that you've been naughty. Changing the .zip to .txt will fool no one. 2) Sniffing the file type the Linux way. Go to certain hex offsets inside the file, examine the bytes. Something like WinZip probably has a very nice, fat, reliable signature that screams "Yes, Petunia, I'm a ZIP!!!". OK, so how do you stop (2) from happening. They're going to freak out if you send a PE32 file (an EXE). No way a SFX (self extracting archive) is going to get through. And a regular ZIP isn't going to work either. I do a Google search, and here's an example of what I find. http://www.ghettoforensics.com/2014/...re-emails.html So if you want transparent attachment transmission, you're going to need to "up your game" a notch. This uses RSA2048, but before the encryption step, it applies compression. So you don't need to compress the file first. It "compresses and encrypts", because that order makes much much smaller files than "encrypt and compress". Encryption is intended to add entropy (i.e. make stuff look random), which defeats compression. https://www.gpg4win.org/ Paul |
#6
|
|||
|
|||
Trying to send email to myself with zip attachment
On Wed, 14 Mar 2018 10:29:52 -0700, Moz wrote:
trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. I renamed it several ways but it still did not go. What is the trick ? My corporate IT Helpdesk publishes the following advice: If you need to send an attachment that would otherwise get stripped or blocked by the scanning engine, put it inside a password-protected zip file. That always works for me and is probably worth a try. -- Char Jackson |
#7
|
|||
|
|||
Trying to send email to myself with zip attachment
In message , Char Jackson
writes: On Wed, 14 Mar 2018 10:29:52 -0700, Moz wrote: trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. I renamed it several ways but it still did not go. What is the trick ? My corporate IT Helpdesk publishes the following advice: If you need to send an attachment that would otherwise get stripped or blocked by the scanning engine, put it inside a password-protected zip file. That always works for me and is probably worth a try. Yes, I used to do that at work. A single-letter password sufficed. Obviously the email system has to allow password-protected .zip files. -- J. P. Gilliver. UMRA: 1960/1985 MB++G()AL-IS-Ch++(p)Ar@T+H+Sh0!:`)DNAf "We're plumbing shallows we didn't know existed here" - Jeremy Paxman (as quizmaster of "University Challenge"), 1998 (when losing team suddenly put on a spurt by showing knowledge of things like the Eurovision Song Contest ...) |
#8
|
|||
|
|||
Trying to send email to myself with zip attachment
On Wed, 14 Mar 2018 14:46:32 -0500, Char Jackson
wrote: On Wed, 14 Mar 2018 10:29:52 -0700, Moz wrote: trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. I renamed it several ways but it still did not go. What is the trick ? My corporate IT Helpdesk publishes the following advice: If you need to send an attachment that would otherwise get stripped or blocked by the scanning engine, put it inside a password-protected zip file. That always works for me and is probably worth a try. Zip shows the contents, even if it's password protected. So rename the .exe or .zip to .txt and then zip-password protect it. 7-zip hides the filename, so Google will block 7-zipped files. Ah, and just tried it. Winrar gives you the option to hide the filename when you password protect it, so Google will probably block that too. []'s -- Don't be evil - Google 2004 We have a new policy - Google 2012 |
#9
|
|||
|
|||
Trying to send email to myself with zip attachment
On Wed, 14 Mar 2018 14:46:32 -0500, Char Jackson wrote:
On Wed, 14 Mar 2018 10:29:52 -0700, Moz wrote: [quoted text muted] I renamed it several ways but it still did not go. What is the trick ? My corporate IT Helpdesk publishes the following advice: If you need to send an attachment that would otherwise get stripped or blocked by the scanning engine, put it inside a password-protected zip file. That always works for me and is probably worth a try. Yes, that works for me also. And it's not just EXEs. I have to send XLSM files that way to customers. Bloody Outlook won't let us send XLSM files to co-workers. Note that the entire transaction is within our company LAN, no Internet involved, but still Outlook refuses to deliver the mail. Our IT guy says that can't be changed. So instead we use internal network shares and send each other links. -- Stan Brown, Oak Road Systems, Tompkins County, New York, USA http://BrownMath.com/ http://OakRoadSystems.com/ Shikata ga nai... |
#10
|
|||
|
|||
Trying to send email to myself with zip attachment
On Wed, 14 Mar 2018 20:11:16 +0000, J. P. Gilliver (John) wrote:
In message , Char Jackson writes: My corporate IT Helpdesk publishes the following advice: If you need to send an attachment that would otherwise get stripped or blocked by the scanning engine, put it inside a password-protected zip file. That always works for me and is probably worth a try. Yes, I used to do that at work. A single-letter password sufficed. I favor "password". It's the one time I can legitimately use it. -- Stan Brown, Oak Road Systems, Tompkins County, New York, USA http://BrownMath.com/ http://OakRoadSystems.com/ Shikata ga nai... |
#11
|
|||
|
|||
Trying to send email to myself with zip attachment
Moz wrote:
gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? As I recall, Google has a filter that blocks sending e-mail to yourself. That is an old spammer trick since rarely do users filter out bogus e-mails that say the were sent from the same user. Gmail also filters out duplicate messages, so sending from A to B to A (where A and B are the same account) look like duplicates so you won't receive it again. https://support.google.com/a/answer/1703601?hl=en I have filters (server- or client-side) that junk any e-mails that purport to have been sent from myself. Rarely do I e-mail myself. Because there are rare occasions when I do want to e-mail myself, I use a rule to look for a passcode string (that only I, er, my filter knows) in the Subject header. E-mails from myself sent to myself, especially using the same account, get junked unless I have added the passcode string to the Subject header. However, that will not circumvent Google's anti-spam filtering regarding e-mails from an account directed to the same account and looking like duplicates. Google started Gmail as a webmail service. They had their own designs as to how that service should work, like using tags instead of folders. Then they added POP and IMAP access; however, they don't follow the RFC standards and have to emulate tags as folders (for IMAP). They also reserve handling options to server-side options and ignore what the client does, like what happens after a new e-mail gets retrieved by a local client. As such, Google's rendition of POP and IMAP are more appropriately labelled gPOP and gIMAP. They do it their way, not the standard way. You'll have better luck sending your e-mail to a different account (even if a different Gmail account). You can then either monitor that other e-mail account or have Gmail poll that other account to pull e-mails from there back to your Gmail account. Don't expect Gmail to behave like other POP and IMAP services that follow the RFC rules. |
#12
|
|||
|
|||
Trying to send email to myself with zip attachment
On 3/14/2018 10:54 AM, mick wrote:
On 14/03/2018 17:29:52, Moz wrote: gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? remove .zip when sending then add it back on when you receive it, or rename .zip to jpg then rename at the receiving end. That is exactly what I did when I had the same problem. Just be sure that the covering E-mail message tells the recipient how to restore the correct extension. -- David E. Ross http://www.rossde.com/ President Trump: Please stop using Twitter. We need to hear your voice and see you talking. We need to know when your message is really your own and not your attorney's. |
#13
|
|||
|
|||
Trying to send email to myself with zip attachment
On 15/03/2018 02:43:24, David E. Ross wrote:
On 3/14/2018 10:54 AM, mick wrote: On 14/03/2018 17:29:52, Moz wrote: gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? remove .zip when sending then add it back on when you receive it, or rename .zip to jpg then rename at the receiving end. That is exactly what I did when I had the same problem. Just be sure that the covering E-mail message tells the recipient how to restore the correct extension. That works with private email addresses but not with gmail, google throws it out every time whatever extension is added or disguise adopted. The OP is using gmail which I did not notice on my first reply. I have tried emailing to my own gmail account and so far I have not been able to circumvent their security. -- mick |
#14
|
|||
|
|||
Trying to send email to myself with zip attachment
Mick,
I have tried emailing to my own gmail account and so far I have not been able to circumvent their security. Checking for double messages ? Just add some random data into the (re)send message. Most likely even a counter will do. Checking if the send files are "dangerous" ? Change the first few bytes in the (executable or ZIP, etc) file (take any hex editor and add one to each letter A-B, B-C, etc. See Napoleons ring for that - and our modern ROT13 "encryption") so the file ID becomes unrecognisable (but reversable)*. Ofcourse, by editing them that way your ISP gets exactly what it wants: The considered-to-be-noobs on the other side (in this case: yourself) will not be able to simply double-click and run them. :-) *with just a little bit of luck you could do that with some VBScript or alike - as long as it can handle binary data. Regards, Rudy Wieser |
#15
|
|||
|
|||
Trying to send email to myself with zip attachment
mick wrote:
On 15/03/2018 02:43:24, David E. Ross wrote: On 3/14/2018 10:54 AM, mick wrote: On 14/03/2018 17:29:52, Moz wrote: gmail account using thunderbird latest. Will NOT use google cloud to do this ! trying to send a zip file to myself so I can get it remotely but Tbird or provider or ???? keeps reporting that is is a security risk. Hey I a sending it to myself ! so how do I do this ? I renamed it several ways but it still did not go. What is the trick ? remove .zip when sending then add it back on when you receive it, or rename .zip to jpg then rename at the receiving end. That is exactly what I did when I had the same problem. Just be sure that the covering E-mail message tells the recipient how to restore the correct extension. That works with private email addresses but not with gmail, google throws it out every time whatever extension is added or disguise adopted. The OP is using gmail which I did not notice on my first reply. I have tried emailing to my own gmail account and so far I have not been able to circumvent their security. Did you try crypto ? Just curious. And I'm not talking about the password on ZIP. Some earlier version of ZIP, you could crack the password in no time. Might not even be considered cracking as such. There's GNUPG. https://www.glump.net/howto/cryptogr...ard-in-windows And a sanitized version with seemingly no options (back when I tried it). This compresses your file first, before applying something like RSA2048. https://www.gpg4win.org/download.html Now, what I prefer myself, is something lighter weight. A "reversible transform" is some simple function you cook up, such that if it's applied twice, the original data comes back. Say for example, we reverse the letters in "Paul" and make "lauP". Now, some form of automation, not designed for this sort of thing, will simply conclude the file is "data". Whereas a human reading the file, will recognize the transform and undo it, or find a tool to undo it. Even using a transform of your own making, written in some language, might work against the gmail attachment scanner. ******* And there are concepts like this, where transmission to yourself is a perfect application for it. https://en.wikipedia.org/wiki/One-time_pad You can make a random file with this. Here, I decide I need a 31,415,926 byte random file. We're not really all that worried about cryptographic perfection here, because this is merely a demo. Humans are not involved. The NSA isn't trying to crack this. dd if=/dev/random of=random.bin bs=31415926 count=1 Now, all we need is a program to XOR two files. http://www.nirsoft.net/utils/xorfiles.html That's actually a GUI program, which access two input filenames and one output filename. Just don't type a drive letter into the box for the destination. Enter your destination filename only ("send.bin") and select the drive letter using the Browse button. You make random.bin the same length as the number of bytes in the message. message.bin = 31,415,926 bytes You make up a random.bin the same length, as in the example above with "dd.exe". Then, using Nirs XORFiles (making sure the two files are the same length, for fewest surprises!!!) message.bin XOR random.bin == send.bin And that's the file you attach to your Gmail. Later, the recipient of the message (with random.bin file in hand) does send.bin XOR random.bin == got_your_message.bin It's a reversible transform, as long as you have the random.bin in hand. In a perfect world, you make a different random.bin for every message sent. And you "sneakernet" the random.bin to the recipient at some point. When sending to yourself, the random.bin is already in your hand. Suitable for the purpose of proving Gmail can't crack it. There *are* email services that will not forward things they can't snoop, so there's always that part of it. I don't know if Gmail is like that or not, whether they would stop crypto transmissions or not. Paul |
|
Thread Tools | |
Display Modes | |
|
|