Re: [Full-Disclosure] email worms, spam etc etc
Thanks ^^ Would you know any good DBSBLs? I've been looking for some good ones... But since Osiru died... I can't find a good one *cry* Also, would it be too much for the mod of this list to just cause new subscribers to be moderated until their first VALID post? Just an idea =/ - Original Message - From: Michael Evanchik [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 25, 2003 09:01 Subject: [Full-Disclosure] email worms, spam etc etc If you were as annoyed as i was with your mailboxes being bombarded I looked up native email filtering for microsoft environments. Attatched is a basic script to get u started. This works on the Microsoft SMTP service on NT4,2000, and 2003 Michael Evanchik www.high-pow-er.com ___ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Re: [Full-Disclosure] email worms, spam etc etc
Would you know any good DBSBLs? Be _very_ careful with some of these. I know one imparticular, Osirus Relays (relays.osirusoft.com) makes it just about impossible to get off their list once you're on meaning you risk blackholing legitimate traffic. To get off this list, they require you email their scripts from the server that is blackholed...and their mail server naturally rejects the message since you're on their list which needless to say, is [CENSORED] [CENSORED] [CENSORED] stupid or [CENSORED] [CENSORED] [CENSORED] intentional. A good alternative might be content filtering (which will also fliter based on the IP information captured from the Received headers). The DSPAM project has been very successful at filtering spams, falsified emails, and worm emails (such as SoBig.F). The URL is http://www.nuclearelephant.com/projects/dspam/ ___ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html