Simon Smith wrote:
Hi List,
I've had roughly one dozen people forward emails to me from
different companies asking me to figure out what these emails are. The
emails appear to be emails from the from the recipient. For example,
John Doe appears to be sending an email to himself, but he's not.
What would really help is SPF, if you can manage it. That way you can
reject mail that claims to come from your domain but does not come from
your mail servers. But this is all a bit OT, not really full disclosure.
Well, sort of. Too many domains do something like '~' or '?' instead of
'-' li
On 6/7/06, Pam Patterson <[EMAIL PROTECTED]> wrote:
Ademar Gonzalez wrote:
> On 6/7/06, Simon Smith <[EMAIL PROTECTED]> wrote:
>> ok, that makes sense... will greylisting counter this?
>
> don't think graylisting will have much effect, each bot sending a few
> mails.
Greylisting works by tempora
Ademar Gonzalez wrote:
On 6/7/06, Simon Smith <[EMAIL PROTECTED]> wrote:
ok, that makes sense... will greylisting counter this?
don't think graylisting will have much effect, each bot sending a few
mails.
Greylisting works by temporarily rejecting the first email from a sender
at an ip add
My best guess is that they are trying to poison bayesian spam filters
with these. I don't know if it is actually working, but I can't imagine
how else these would serve any purpose.
Simon Smith wrote:
Hi List,
I've had roughly one dozen people forward emails to me from
different companies
When you try and send email to a non-existant address, the receiving server
rejects during the smtp transaction so a return address is not needed since
the sending bot gets this error message before the transaction is completed.
Depends on the MTA and how it's configured. Some will silently acce
> ok, that makes sense... will greylisting counter this?
To some degree depending on how you greylist but why would you want to? In
other words if the spammers know that 100 of your domain's addresses on
their mailing list are invalid and remove them, then that's 100 email
attempts your server won
On 6/7/06, Simon Smith <[EMAIL PROTECTED]> wrote:
ok, that makes sense... will greylisting counter this?
don't think graylisting will have much effect, each bot sending a few mails.
ademar
___
Full-Disclosure - We believe in it.
Charter: http://lis
ok, that makes sense... will greylisting counter this?
Geo. wrote:
>> Alright,
>> If this is spam/email harvesting then please explain how it is
>> working without any legitimate return path? I understand blasting out
>> bunk emails with a legit return path, but these emails have no such
>> pa
> Alright,
> If this is spam/email harvesting then please explain how it is
> working without any legitimate return path? I understand blasting out
> bunk emails with a legit return path, but these emails have no such
> path. Whats the ditty?
When you try and send email to a non-existant addre
On Wednesday 07 June 2006 16:10, Simon Smith wrote:
> Hi List,
> I've had roughly one dozen people forward emails to me from
> different companies asking me to figure out what these emails are. The
> emails appear to be emails from the from the recipient. For example,
> John Doe appears to be s
Ok,
So I've done a bit more digging and I am seeing a lot more of these.
The sources are very different from each other. Some of them come from
china, some from europe, etc. The one thing that is really bugging me is
that none of these emails contain legitimate return paths.
Michael Holstein w
Alright,
If this is spam/email harvesting then please explain how it is
working without any legitimate return path? I understand blasting out
bunk emails with a legit return path, but these emails have no such
path. Whats the ditty?
Michael Holstein wrote:
>> Is this just another instance of s
Is this just another instance of spammers fishing for legit addresses?
If so, then why the hell are they sending email from invalid addresses?
I can dig into this a lot further if I need to, but I wanted to see if
anyone else had any ideas about it first. Thanks in advance!!!
Yes (just spam --
Hi List,
I've had roughly one dozen people forward emails to me from
different companies asking me to figure out what these emails are. The
emails appear to be emails from the from the recipient. For example,
John Doe appears to be sending an email to himself, but he's not. In
reality when chec
15 matches
Mail list logo