[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: #1093

Subject: Re: #1093
From: Dan Schlitt <schlitt@xxxxxxxxxxxxx>
Date: Sat, 20 Jan 2007 20:03:17 -0500
Cc: ietf-usefor@xxxxxxx
In-reply-to: <87wt3hgx13.fsf@xxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-usefor/mail-archive/>
List-id: <ietf-usefor.imc.org>
List-unsubscribe: <mailto:ietf-usefor-request@imc.org?body=unsubscribe>
References: <45AD2F7C.8020707@xxxxxxxxxxxxx> <45ADFDBA.3C66@xxxxxxxxxxxxxxxxx> <45AE008C.4050401@xxxxxxxxxxxxx> <JC2Ky0.Iwo@xxxxxxxxxxxxxxxx> <45B00F16.2CDB@xxxxxxxxxxxxxxxxx> <87d55bhmpc.fsf@xxxxxxxxxxxxxxxxxxxxx> <JC4svx.LBy@xxxxxxxxxxxxxxxx> <87wt3hgx13.fsf@xxxxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-usefor@xxxxxxxxxxxx

Judging from the "Unknown Users" list I see in my log files I conclude
that the spammers have a list of likely users that they use. They don't
have any relation to addresses that they find out in the Internet. Some
even look like variations that might be used by some places to avoid
spam to more obvious users.

One mailbox or three, it doesn't seem like something that merits
spending time on. Is it a protocol issue? Does it need to be
standardized? No and no.

/dan

-- 

Dan Schlitt
schlitt@xxxxxxxxxxxxx

On Sat, 20 Jan 2007, Russ Allbery wrote:

>
> Charles Lindsey <chl@xxxxxxxxxxxxxxxx> writes:
>
> > Except that "news@xxxxxxxxxxxxxxxxxx" is not likely to be visibly
> > plastered all over Usenet and the Web, ready to be scraped by spammers
> > (as "abuse@xxxxxxxxxxxxxxxxxx" might well be).
>
> Right, that's why postmaster so rarely gets spam.
>
> (In case it's not obvious, I'm being extremely sarcastic.)
>
> > So if a spammer sends to news@xxxxxxxxxxxxxxxxxx he must have read RFC
> > 2142, and then looked at all the domains he found in Path headers and in
> > Injection-Info and so tried putting "news@" in front of them.
>
> No, they just send mail to news@ every single host that they run across in
> any context.  Why bother going to the work of limiting it down?
>
>

References:
- Ticket status, USEPRO
  - From: Harald Alvestrand
- #1093 (was: Ticket status, USEPRO)
  - From: Frank Ellermann
- Re: #1093
  - From: Harald Alvestrand
- Re: #1093
  - From: Charles Lindsey
- Re: #1093
  - From: Frank Ellermann
- Re: #1093
  - From: Russ Allbery
- Re: #1093
  - From: Charles Lindsey
- Re: #1093
  - From: Russ Allbery

Prev by Date: #1416: USEPRO 3.9: Reinjection and Injection-Date
Previous by thread: Re: #1093
Next by thread: Re: #1093
Index(es):
- Date
- Thread