Re: twitter spam why RCVD_IN_DNSWL?

2009-07-10 Thread SM 

At 08:31 09-07-2009, Bob Proulx wrote:

I just wanted to confirm that I am seeing twitter invite spam that
appears AFAICT to be from twitter.com to addresses that are not and
never have been associated with Twitter.  Mostly moderated mailing
lists.  It looks to me like there is some type of interface at Twitter
that allows a user to upload a list of email addresses and invite them
to use Twitter.  Probably because addresses exist in a user's mailbox
they get spammed by Twitter with an invite.


That's social networks spam.  Your friends are happy to upload their 
address book to those sites so that you can be spammed. :-)  If you 
are running mailing lists, don't whitelist those domains.  That also 
applies if you don't want to be spammed by those domains.


Regards,
-sm

Re: twitter spam why RCVD_IN_DNSWL?

2009-07-09 Thread Michelle Konzack 
Am 2009-07-09 09:31:24, schrieb Bob Proulx:
> Michael Scheidell wrote:
> > Obviously, they are letting automated processes in.
> 
> I just wanted to confirm that I am seeing twitter invite spam that
> appears AFAICT to be from twitter.com to addresses that are not and
> never have been associated with Twitter.  Mostly moderated mailing
> lists.  It looks to me like there is some type of interface at Twitter
> that allows a user to upload a list of email addresses and invite them
> to use Twitter.  Probably because addresses exist in a user's mailbox
> they get spammed by Twitter with an invite.
> 
> Bob

[ '/etc/courier/bofh' ]-
badfrom @twitter.com


Thanks, Greetings and nice Day/Evening
Michelle Konzack
Systemadministrator
Tamay Dogan Network
Debian GNU/Linux Consultant


-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/
# Debian GNU/Linux Consultant #
Michelle Konzack   c/o Shared Office KabelBW  ICQ #328449886
+49/177/9351947Blumenstasse 2 MSN LinuxMichi
+33/6/61925193 77694 Kehl/Germany IRC #Debian (irc.icq.com)


signature.pgp
Description: Digital signature

Re: twitter spam why RCVD_IN_DNSWL?

2009-07-09 Thread Bob Proulx 
Michael Scheidell wrote:
> Obviously, they are letting automated processes in.

I just wanted to confirm that I am seeing twitter invite spam that
appears AFAICT to be from twitter.com to addresses that are not and
never have been associated with Twitter.  Mostly moderated mailing
lists.  It looks to me like there is some type of interface at Twitter
that allows a user to upload a list of email addresses and invite them
to use Twitter.  Probably because addresses exist in a user's mailbox
they get spammed by Twitter with an invite.

Bob

Re: twitter spam why RCVD_IN_DNSWL?

2009-06-02 Thread Michael Scheidell 
> On 1-Jun-2009, at 05:52, Michael Scheidell wrote:
>> I don't follow anyone on twitter.
>> Went to their web site for the first time last week to look for their
>> complaint address.
> 
> I've never seen a mail from twitter that was not directed to my
> twitter account.  I searched the entire mailspool for the last 31
> days.  This is certainly not normal.

That is what I have been saying.

And I don't have a twitter account.

Obviously, they are letting automated processes in.
While they are working on trying to stop Twitspam
Flood of Twitter Spam Has Only Just Begun
, they should try to do
something about people mass inviting a harvested list of email addresses.

Its way too easy to invite someone you don't know to your tweets.

-- 
Michael Scheidell, CTO
>|SECNAP Network Security
Finalist 2009 Network Products Guide Hot Companies
FreeBSD SpamAssassin Ports maintainer



_
This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.secnap.com/products/spammertrap/
_

Re: twitter spam why RCVD_IN_DNSWL?

2009-06-01 Thread LuKreme 

On 1-Jun-2009, at 05:52, Michael Scheidell wrote:

I don't follow anyone on twitter.
Went to their web site for the first time last week to look for their
complaint address.


I've never seen a mail from twitter that was not directed to my  
twitter account.  I searched the entire mailspool for the last 31  
days.  This is certainly not normal.


--
The quality of our thoughts and ideas can only be as good as the quality
 of our language.

Re: twitter spam why RCVD_IN_DNSWL?

2009-06-01 Thread Michael Scheidell 
> On 28-May-2009, at 14:57, Michael Scheidell wrote:
>> why does a company that is so easy to spam through get a -8 point
>> pass?
> 
> Because the only way to get a message from twitter is to 1) have an
> account on twitter 2) have someone who YOU ARE FOLLOWING send a direct
> message to you 3) have Twitter set to send Direct messages to you via
> email. No one can send you a direct message unless you follow them, so
> you have 'opted-in' to receive their messages. If they are spammers,
> UNFOLLOW them.

Incorrect.

I don't follow anyone on twitter.
Went to their web site for the first time last week to look for their
complaint address.

> 
> Whether you want the message or not, it is not spam. If you don't want
> these messages, disable the emailing in your twitter account.

I can't.

I don't have a twitter account.

So, since twitter can send email to someone without a twitter account, its
spam.  Since I can't opt out without an account, its spam.

If twitter allows people to forge email address when you sign up, without
confirmed opt in, its spam.

Since it doesn't include the full physical address of the sender, its also a
violation of federal (you) can-spam laws.

-- 
Michael Scheidell, CTO
>|SECNAP Network Security
Finalist 2009 Network Products Guide Hot Companies
FreeBSD SpamAssassin Ports maintainer


_
This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.secnap.com/products/spammertrap/
_

Re: twitter spam why RCVD_IN_DNSWL?

2009-05-31 Thread LuKreme 

On 28-May-2009, at 14:57, Michael Scheidell wrote:
why does a company that is so easy to spam through get a -8 point  
pass?


Because the only way to get a message from twitter is to 1) have an  
account on twitter 2) have someone who YOU ARE FOLLOWING send a direct  
message to you 3) have Twitter set to send Direct messages to you via  
email. No one can send you a direct message unless you follow them, so  
you have 'opted-in' to receive their messages. If they are spammers,  
UNFOLLOW them.


Whether you want the message or not, it is not spam. If you don't want  
these messages, disable the emailing in your twitter account.


Settings=>Notices

New Follower Emails: [ ]  Email when someone starts following me
Direct Text Emails:  [ ]  Email when I receive a new direct message
Email Newsletter:[ ]  I want the inside scoop—please send me email  
updates!



--
I'm no psychologist (although I play one when I'm picking up chicks
over by the asylum)

Re: twitter spam why RCVD_IN_DNSWL?

2009-05-28 Thread Karsten Bräckelmann 
On Thu, 2009-05-28 at 16:57 -0400, Michael Scheidell wrote:
> why does a company that is so easy to spam through get a -8 point pass?
> 
> , RCVD_IN_DNSWL_HI=-8,
> 
> its WAY too easy to spam through twitter, from every idiot with a 
> twitter page.

  http://www.dnswl.org/

Promote for a lower listing.


-- 
char *t="\10pse\0r\0dtu...@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}

twitter spam why RCVD_IN_DNSWL?

2009-05-28 Thread Michael Scheidell 

why does a company that is so easy to spam through get a -8 point pass?

, RCVD_IN_DNSWL_HI=-8,


its WAY too easy to spam through twitter, from every idiot with a 
twitter page.

belongs in the BRBL if you ask me.



X-Spam-Status: No, score=-8.499 tagged_above=-999 required=5
tests=[DKIM_SIGNED=0.5, DKIM_VERIFIED=-1, RCVD_IN_DNSWL_HI=-8,
RELAY_COUNTRY_US=0.001] autolearn=disabled
Received: from mx006.twitter.com (mx006.twitter.com [128.121.146.142])
by mx1.bct.ionspam.net (Postfix) with ESMTP id DE522416967
for ; Thu, 28 May 2009 16:48:25 -0400 (EDT)
Received: from web097 (web097.twitter.com [10.209.34.6])
by mx006.twitter.com (Postfix) with ESMTP id DB0C7DE5000
for ; Thu, 28 May 2009 20:48:25 + (UTC)
X-DKIM: Sendmail DKIM Filter v2.8.2 mx006.twitter.com DB0C7DE5000
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=twitter.com; s=dkim;
t=1243543705; i...@twitter.com; bh=da+GJnis+g6CDEpR01HpsxJQvNU=;
h=Date:From:Sender:Reply-To:To:Message-Id:Subject:Mime-Version:
 Content-Type;
b=gJWEBULtROB6QAV3ZnoRimtlCVmVxvkHVswjMMofjfirLhxkSE2c2xAIMvburp6+J
 nLrGXRI0nOz4ogZt1xevNVHWbzrpMdvGD1J46Spx+kdtMnXQPeWrL+1bQWwO/mGsd1
 AuA0Fup4hsqzujnw7yiDD8BrjqS9GyIQJFtqIaEY=
X-DomainKeys: Sendmail DomainKeys Filter v1.0.2 mx006.twitter.com DB0C7DE5000
DomainKey-Signature: a=rsa-sha1; s=default; d=twitter.com; c=simple; q=dns;
b=2TEdD5WKKHMmX5xHw7T6/m20ZEEDT5rkH+ayl3eJy32CnzUvEDwJs5lZlgnqoAzMA
PrAN8M4Vkz4ox7ur6FsEw==
Received: from twitter.com (localhost [127.0.0.1])
by web097 (Postfix) with ESMTP id 434077663F4
for ; Thu, 28 May 2009 20:48:24 + (UTC)


--
Michael Scheidell, CTO
Phone: 561-999-5000, x 1259
> *| *SECNAP Network Security Corporation

   * Certified SNORT Integrator
   * 2008-9 Hot Company Award Winner, World Executive Alliance
   * Five-Star Partner Program 2009, VARBusiness
   * Best Anti-Spam Product 2008, Network Products Guide
   * King of Spam Filters, SC Magazine 2008

_
This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.secnap.com/products/spammertrap/

_