Slashdot Mirror
Who Reads Your @nospam Mail?
pjbrewer writes: "Ever use an address like name@nospam.com when filling out a form on the web or registering software? Think thats safe?
Somebody is surely receiving messages destined for these fake nospam emails... and for curiosity or boredom, I checked it out.
Nospam.com is owned by Anything.com, which is apparently, as it says on their web page, based in the Cayman Islands. Their page gives a short bizspeak blurb about what the company does (provide strategic advice to internet companies and vc-types).
Offshore corporations can be as legitimate as any other, so why does this suggest concern? Could it be that the owners or managers of nospam.com want to avoid US laws for some reason? The Caymans sound like a place to incorporate rather than a place to set up offices and a T1. Am I overly paranoid, or is there something interesting that could be done to analyze people's use of *@nospam.com type addresses or some other interesting use of this content they must be receiving?
Nospam.org and Nospam.net appear to be net malls owned by BestOfTheNet."
you're wasting precious bandwidth that could be used to get the REAL porno!
Mike Roberto (roberto@soul.apk.net) -GAIM: MicroBerto
Berto
Look for "Electronic Communications Privacy Act".
Yahoo is a carrier.
They better hope they do nothing to jeopardize that; it's the only thing that prevents them from being liable for the content of every email that passes through their system, like your employer is.
--
Domain Name: K.COM
Registrar: REGISTER.COM, INC.
Whois Server: whois.register.com
Referral URL: www.register.com
Name Server: No nameserver
Updated Date: 12-feb-2000
Organization:
Reserved Domain
(ICANN) Internet Corporation for Assigned Names and Numbers
4676 Admiralty Way, Suite 330
Marina del Rey, CA 92092
US
Phone: 310-823-9358
Fax..: 310-823-8649
Email: res-dom@iana.org
Domain Name: K.COM
Created on..............: Wed, Dec 01, 1993
Expires on..............: Fri, Dec 07, 2001
Record last updated on..: Fri, Jun 02, 2000
Its the same for all [a-z].[com|net|org] domain names. No nameserver, no way to get the mail, and I would hope that ICANN wouldn't find some covert way to read spam.
--
Think about it folks. If you don't actually put your email address in the field, why in gods name would you consider the email yours?
You TOLD them where to deliver it. They're doing exactly what you wanted. Don't complain when that actually goes someplace! :)
This nospam business is getting really annoying. If you don't want to get spam, start doing agressive filtering.
Another nice thing is to give an email in the form name+domain@yourdomain.com where domain is the domain of the people you're giving your email address to. Lets you track down where the spammers got your address and then filter it all out.
If you want to use a deliberately fake domain name, please don't just make up something that you think is fake; instead, use EXAMPLE.COM (or .NET or .ORG). IANA has deliberately reserved these domain names for this purpose.
I've set up my /etc/aliases file to redirect all mail to devnull to, well, /dev/null. I find it works quite well to send spam to devnull@mydomain. Thus you prevent the massive load on servers like nowhere.com which, according to the webpage, gets about 80000 (!) pieces of mail a month.
---
END OF LINE
I like the messages I've seen about giving unique e-mail addresses when signing up for services to find out who is giving our e-mail addresses to spammers.
Would there be anyway to make automate this & make it really convenient so that we could create a online "hall of shame" database of companies who are responsible for selling our e-mail addresses?
Check out this page at asdf.com, too:
http://www.asdf.com/asdfemail.html
That's why I don't use "@nospam.com" for that stuff.
/dev/null if I want it as private as possible. Sucks up a little of my bandwidth, but I have an OC3 on that box...
I use billg@microsoft.com if I don't care who reads it, and an alias that is procmailed into
Get a free Yahoo account, and then never check it and just let 'em delete it for you when it fills up. Since it's actually your account, it'd be a felony for Yahoo to reveal the contents of the email, so you're set.
--
not@chance.com However, I never thought of looking at it. Try it. Seems to be for sale.
Like i'd want to buy THAT.
Bad things often happen to good people,
It is up to them to see that they remain good.
Of course there is about one or two machines that actually use TLDs. I seem to remember a guy with the user@cx domain who posted on /. Everyone he gave his address to freaked out.
The moral of the story? Just use user@host for your fake email. Or better yet, the slicker root@localhost for an evil loopback effect.
Why is everyone always bashing on drug smugglers? You're going to have crime as long as you define stuff people want to do as a crime. And if you're going to have crime, I'd much rather have organized crime than amateurs. I was actually considering setting up something similar to Jim Bell's assasination politics for local drug dealers. My theory is that the problem with drugs isn't the drugs themselves, it's the disorganized nature of the market. Make prices widely known, and people will be able to shop around. Profits fall out of the market, and bam! it's no longer worth shooting someone over drug territory. Maybe roughing them up a bit, but not killing them.
The guy down the street got shot through his window a few months back. Is someone going to do that if price competition can bring the margins down to under 50%?
I decided against it, though. Even if it isn't strictly illegal, I wouldn't want the hassle of being disliked by the police.
--Kevin
Spamido - The art of turning a spammers strength against them.
http://www.yelm.freeserve.co.uk/spamido/
Government of the people, by corporate executives, for corporate profits.
http://www.yelm.freeserve.co.uk/spamido/
Add a centralised LDAP server that can be used to check the senders address and spammers will be put out of business big time.
Government of the people, by corporate executives, for corporate profits.
If people are sending mail to @nospam.com, and someone IS receiving mail for *@nospam.com... what legal ground do they have? After all.. THEY SENT IT!
There is no 'law' that says how to use email..
Tell me if anyone is doing this, but...
... maybe 8 hours. Then it is divided up so that only one copy is kept of each message. Then, it's sent out to volunteers who hunt down the spammer to whatever degree they feel like. Since each message is only processed once, rather than once per person, volunteers probably wouldn't be called upon more than once a week. Once a month, if it scaled well. Send a message to the postmaster "on behalf of hangthespammershigh.org" and everyone else involved, like whoever hosts the web page they tell you to visit.
Set up a mailing list. People forward spam there. Everything sent to the mailing list is stored for
It's much more effective for one person to track down the people involved and threaten to blow up their offices if they don't stop spamming than it is for 100 people to forward it to abuse@nonexistantdomain.cx.
--Kevin
The bizland account redirects to an iname.com account, so if the spam ever starts mounting I can kill it fairly easily.
(Note that 'foo' is NOT my Bizland name!)
So far I haven't received anything I shouldn't have. Which is nice to know.
http://rocknerd.co.uk
MAILER-DAEMON@example.com
Sometimes when they ask me to "tell a friend!" about something or other, I'll tell the postmaster, and give mailer-daemon as my address. Lonely postmasters like getting mail from their mailer-daemons.
Gates' Law: Every 18 months, the speed of software halves.
If you use nobody@ address, all the email never leaves the offending site and does not use up the bandwidth.
well, we do something similar: we have catch-all subdomains for this purpose, so I can enter $sitename@catch-all-sub.ourdomain.net :-) :)
makes identifying spammers even more fun
(IIRC, you can make a catch-all in sendmail by using *@domain as a recipient in the virtusertable)
have fun
nc
I will not buy this software, it is scratched
The founders of DNS have reserved those 3 domains for use in 'example' documentation, explicitly so that documentation can use those domains in safety and know that any email will go to the bit-bucket.
They have a similarly reserved set of IP addresses that are only to be used as 'examples' in documentation. This is more important than you might think, there are several class-B's that are unusable on the modern internet because CISCO used them (instead of the real 'example IP's') in their documentation for setting up their routers. And more than a few admin's have used them verbatim.
So, for everyone who writes documentation, or wants an address/DNS that's reserved and will never be used in the global internet, use example.(com|net|org) and the appropriate IP ranges.
Geek places like /. get my rot13 address because (at least for now) geeks (at least the UNIX derived subset) know how to deal with that. Other places get addresses that have my real domain, and actually get delivered to a distinct mailbox. That way I can see not only what spam picks up that address, but also how many people fail to correct the address (many, actually). My usenet postings are like that.
But the idea of unique codes for every submission of an e-mail address is very intriguing. I may have to do that.
now we need to go OSS in diesel cars
You forgot the parsing of the mail address. It can't be that hard to make a script delete characters that's not typically part of a mail-address. I bet I could make a script that will dechiper most of the fake slashdot mailaddresses.
.com, .edu and .org .. , etc.
/., you'll be surprised how easy it is to send spam to those who wants to be found.
A few simple rules, you can juggle with the rules to create more mailaddresses. One or more might be the true one:
ignore mails lacking @, at or a substitute. You MUST have an @. The same with dot.
at = @ , dot = . , plus = + especially with spaces in the text
attempt stripping everything after
attempt stripping everything in caps, and vica versa (lowercase)
attempt stripping certain keywords: SPAM, REMOVE, IGNORE. Attempt to widen the scope of this, checking for same caps or until a special symbol occurs.
strip illegal symbols and sequences of symbols, like spaces, question-marks, dollar-signs, paranthesis, [ , ] , @. ,
ignore addresses resolving to localhost, localdomain, root, webmaster, abuse, admin. These will only get you in trouble for little gain.
This is only on top of my head, I'm sure someone looking at a list of fake addresses can come up with more "rules". I'm also sure that if you apply this to the addresses you find here on
Of course you have to be pretty sick in your head for doing this, but spammers probably are already.
- Steeltoe
http://www.debunkingskeptics.com/
You're vaguely in the right direction. My domain name is a clue! Think ieeefp.
--
-- SIGFPE
I think the person who submitted of this story is just a little too paran.... *HUH*! Who's that!?!
.invalid behind it.
.invalid and understand that the address is not valid.
Suppose I use a nospam.com email address on slashdot. Suppose some spammer harvests the address from slashdot.org, and sends a spam to it. Does that say *anything* about what the email address was *ever* used for? Naah.
Even when I use it to subscribe to hmmm let's say mp3.com or some, and they send me a newsletter. Does that say anything about me? Can they collect any information that's valuable to advertisers that way? Naah.
Anyways, it's just plain *rude* te use an existing domain in an anti-spam munge. Those people get the junk that's meant for you.
On Usenet, RFC1036 tells you to use a valid email address. It's rude not to check the email, people can have a valid reason to email you. Discussions can become off-topic, or a one on one discussion, perhaps your article got canceled for some reason and the canceler wants to send you a cancel notice, etcetera.
If you really want to munge the email address, simply use something that never can and will exist (like a non-existing tld, or a domain name with an underscore in it) and put
Email clients with some clue will recognize the
Example: fake.email@slash_dot.invalid
One Usenet, it's best to munge your From address and use a valid Reply-To address. From addresses are very easy to harvest very rapidly from the overview database, while you'd have to retrieve all headers seperately to harvest the Reply-To headers. A friend of mine tested it by using spamtraps, and after three months, out of +- 550 spams.... 550 were send to the From address.
It would NOT be fun.
Since June 5, I've been the person of which you speak.
If you have done a gnutella (or clone) search in the past few days, you probably have seen my name...
gnut> find anything CURRENT RESPONSES ----------------- 1) email matt@steinhoff.net for kiddie porn and anything 216.10.33.21:6345 size:80.854M ref:84279680 speed:10000It all started when I noticed that every query I submitted returned an html file. In that html file was a link to http://www.cybergirlsex.com/raw cash/click.cgi?tella...
gnut> find anything and everything CURRENT RESPONSES ----------------- 1) anything and everything.html 216.100.51.42:6345 size:2.83K ref:234946611 speed:10000 gnut> find nothing at all CURRENT RESPONSES ----------------- 1) nothing at all.html 216.100.51.42:6345 size:2.83K ref:117638272 speed:10000I figured that an ambitious person had hacked gnutella in order to promote the web site so that he'd get some extra cash. I sent email to the the owner of 216.100.51.42 and they promptly shut off the user's connection. I also sent email to cybergirlsex.com in hopes that they wouldn't pay the user 'tella' for the referrals. Spam shouldn't pay no matter how it is done, right?
Ever since I sent the email message to the domain admin for the porn site, my name and server address has been showing up in each and every gnutella response. Cause and effect (and a bit more) leads me to believe that the porn site was 'tella' and they are not happy that I've cut into their revenue stream.
With a bit of investigative work I was able to tie the user who is spamming gnutella with the user who admins the porn site and more than two dozen other domains.
I've got the guy booted off a number of services in the past few days but that isn't much help (though it does make me feel a bit better). It's like playing wack the mole; hit him in one place and he pops up again elsewhere. I'm getting hundreds of email messages from people either looking for child porn or wanting me dead for supplying child porn. (Of note, of course, I don't have any child porn so stop asking.)
I've contacted the FBI's computer crimes division and they are far more interested in the folks emailing me looking for kiddie porn than they are in getting rid of the slime ball spamming my email address. At least the kiddie porn angle got their attention or I imagine this wouldn't have even made their radar.
So, what can I do? I'm already filtering my email so that I don't have to read through hoards of email. (Did I mention that he has also signed me up to dozens of mailing lists?) What's next? While tracking and smacking the first day was exciting, today it's a bit of a drag.
Any good ideas will return my eternal gratitude. (Any especially nasty ideas and I'll give you the guy's email address. {grin})
Matt Steinhoff
(I had posted this as an 'Ask Slashdot' a few days ago and, of course, Slashdot would rather post Anime Moves on DVD.)
localhost.net has address 127.0.0.1 heh
I always use bgates@microsoft.com
;-) but it screws up their already overworked servers, poor, poor, NT boxen.
I also fill out all contact information:
Bill Gates
C/O Microsoft Corp.
1 Microsoft Way
Redmond, WA 98052
1 (425) 882-8080
And I check the check box "Please Send Me Spam"
I figure no one really gets the emails (at least not after I started this
I was just checking on Yahoo Maps to double check the zip code (I rarely get that right) and I noticed that http://encarta.msn.com is listed as their website not http://www.microsoft.com as I would expect.
Devil Ducky
Devil Ducky
MY peers would get out of jury duty.
Yea, I remember one time when I sent an e-mail to blah@blah.com as a test of a SMTP server... I actually got a reply back a couple of weeks later.
Moral: When using a fake address, at least keep the domain to something you know.
No. I've only been doing this for a few months. In the last month the amount of spam I receive at work has doubled. It's being sent to the email address I used to have about 2 years ago - our company changed name then. I have not used that address in 2 years. So suddenly, after 2 years, my address got onto a spam list! So it seems that it takes along time for mailing lists to be passed around.
--
-- SIGFPE
You know, I'd been thinking a lot about the bogus e-mails that the spambots pick up, and I keep thinking "wouldn't it be fun to put someone's e-mail that I don't like in my message, to get them spammed to oblivion?" .signature to:
Of course, it probably wouldn't be moral to do that. So who would be a valid target for this kind of treatment? In my opinion, a company that does nothing to stop spammers is fair game (since it's their fault most spam gets out here). And since I'd love the irony of them recieving spam from their own servers, I'm seriously considering changing my
help@uu.net root@uu.net postmaster@uu.net abuse@uu.net
I can just see them now! "Where the hell is all this spam coming from?" "Um... it look like it's coming from us!"
Serves 'em right!
-Denor
I used to add random "Apt. XXX" to my mailing address for the same reason.
That got really boring, though. =)
I relize this works in a lot of situations.. but is it part of the smtp rfc, or simply a common way of doing things? I mean..
bang-path addresses used to work too, and they slowly faded away.
So.. if it's not part of the RFC.. then it would be wrong to say a server that doesn't support it is a 'piece of crap' server.
First, from reading about SeaLand, I got the impression that the Cayman Islands is making a bid to extend their corporate business secrecy laws to the Internet. Which has good applications (e.g. are you a human rights' organization in an oppressive nation who needs a safe place to store your information?) & bad applications (e.g. are you a drug smuggling ring who needs a safe place to store your information?)
But looking at the web site, it seems amazingly bland, almost to the point of parody. Amazing amount of corporatespeak. (Reading it, I was reminded of The Tubes' Sell Out album liner notes.)
Hrmf. Another mystery on the Internet, a land of countless mysteries.
Geoff
I think I see a trend here. Maybe for them it really would be easier to muzzle the entire internet than to produce p
Sorry dude, I use your adress all the time
when filling in forms.
No doubt your email account is filled every
morning with email from 'hot chicks doing
it hardcore' because of me.
+------------------------------------------------
For all those forms, I simply reply with the following address:
privacy@them.tld.
That way, they can get their own mail to their privacy account and I don't get bothered. Maybe if they get annoyed enough, they'll stop asking for your email just to download a piece of 'free' software. Of course 'free' means "If you sell^H^H^H^Hgive your e-mail address to us
Is this polite? Probably not. Neither is sending junk mail to people or selling your "private" databases when you go bankrupt.
Regards,
Matt Heckaman
Don't take life so seriously; it isn't permanent.
Seriously, I would prefer no control over government control, when it comes to spam. As much as I hate spammers, I hate government beauracracy and scheming more.
Besides, the government can't do anything more than those of us who actually use the internet can do. We can take it upon ourselves to deal with spam - report it, log it, prosecute it (based on existing not-quite-net-related laws) and pressure the spammer into ceasing his behavior.
A government only has control over it's physical jurisdiction -- but users of the internet have absolute control. We can, in numbers, put a crimp in the activities of people in places where their governments (or lack thereof) allow them to continue their spamming.
The problem with this is that there are so many organizations out there working on this, but none of them are working together. If we had an army of 100,000 volunteers worldwide, we could do some serious damage.
This is a bunch of dreamy -- in the perfect world sort of stuff following, so take it all with a bucket of salt. I'm allowed to day-dream, right?
100,000 out of the the combined global 'net population is less than one one-hundredth of a percent (.01).
If 100,000 people each processed 10 spam messages in Usenet or email per day, you suddenly have millions of people being ratted-out to their ISP's and upstream providers on a weekly basis. From experience, I know that you have a 10% chance of toasting someone's account when you bring to light their infringement of the provider's TOS. Those are decent odds, if you have enough people to pursue them.
And we aren't talking a lot of time. Not all of us can sit at our computers fighting spam each day, but if we knew we were actually helping out (a lot of us feel like people have given up, so who gives a fuck if we try), that two minutes per email would be well worth it.
And just imagine if we could get a full percentage of netizens to do the right thing and help out? We'd be talking 100,000,000 small skirmishes conducted; almost a billion per week.
There are two concerns with this, of course. The first is "won't this alone generate a lot of wasted bandwidth?" and "what about rogue ISPs?"
The answer to the first question is, yes. A lot of bandwidth, but with a legitimate purpose. Further, the amount will decrease as success is made and spam in general is diminished.
The answer to the second question is a bit complex, because there will certainly be some people who will continue to spam, no matter what ever happens.
If you have 7,000,000 messages processed each week (or in the better case of a full percent of users fighting spam, 1,000,000,000), we could imagine that perhaps 50% of the messages are duplicates. That, is 3,500,000 (or in the best case, 500,000,000) unique messages. The higher the number processed, the higher the number of duplicates, of course.
So with the lower number of 3.5 million messages (generating higher response for duplicates, in the neighborhood of 7 million), let's say that half come from every day John Q Public's who haven't quite figured out that spamming is BAD. The other half come from the top 100 known spammers.
The John Q Public half has a higher chance of being incinerated, because their 20$/mo ISP isn't going to cut them much slack when several dozen complaints are filed. Whammo. Figure a 20% success rate on that alone, minimum. Say goodbye to 300,000 spammers.
The rogue-ISP and known-spammer half is a lot more difficult. We'll figure we have what... a 1% chance of shutting them down? If 3.5 million messages are sent to these top 100 and their providers or upstreams, (we're talking AOL and upstream providers from rogues), it's only 35,000 messages per entity. Not a lot to deal with. Even over a year, it's only a couple million messages and complaints each.
This is where that fraction of a percent of anti-spammers would have to recruit people to help out, until we had that full percent battling with us. That full percent cranks that 35,000 into 3.5 million per week, per entity. This is a lot of mail. I believe it would crunch all but the actual spammers themselves, who have absolutely to reliance on other servers or services for the processing of their own spam, into submission. Jim Bob, running a box at a co-lo will be shot into flames by the service giving him the feed pretty damned fast. Jill Bob with her own server and own direct connection is going to be black holed in a heartbeat by all the other admins and postmasters watching their mailboxes fill with complaints each day. At some point, the entrace points for messages to be propegated and stuffed into your mailbox will be squeezed into a trickle for these people, which is as good as none for a lot of us.
But, as I said -- this is all a utopian, let's do this ourselves -- all it takes is some time and a group of people who give a fuck, idea. I don't actually expect it to ever happen.
---
seumas.com
Yahoo can do whatever it wants with your electronic mail; its sitting there on their servers, after all.
Nope. Yahoo is a carrier, not your employer.
Read the ECPA. That provision has never been ruled unconstitutional, it's been sitting there quietly in effect since 1986.
Only U.S. Postal Service mail is protected with the felony mail tampering law.
Different law.
However, I mention this because it brings up an interesting point; FedEx and UPS packages aren't mail, and aren't subject to that law. Keep that one in mind...
--
If you're concerned that someone may send you important email and accidentally forget to remove the 'nospam' or whatever other element you've dropped into your email address, set your domain up so that it has an appropriate subdomain such as: nospam.mydomain.org, where 'mydomain.org' is your domain. Then route everything that comes into 'nospam.mydomain' right to /dev/null. Get's rid of your spam just as well as the other alternative would have, but without the possibility of having any of it fall into someone else's hands.
I used to think I got a lot of spam. Perhaps a dozen or two dozen messages a day. But compared with the almost two hundred messages per day from customers I support, spam isn't quite such a big deal to me.
I used to take the time to track spammers down and collect a few severed heads, but with such a busy life, few of us actually have time to do so -- even with fairly reliable services like spamcop.org.
I guess it's the price we pay for having as free an internet as possible. I dislike it, but I feel better knowing that it's all part of dealing without legislation. And that's fine with me.
---
seumas.com
Of course, loads of domain name registrars and ISPs advertise with yourname.com.. Which is of course a competitor! Doh!!
--
SCO employee? Check out the bounty
Last time this happened, I looked at the headers of the usenet reply, went to the usenet newsgroup in question, and asked the person to not use my domain for nospam email addresses. The person, rather embarassed, was nice about it and changed his fake email address.
:-)
Nobody's used my domain for that purpose yet, but if they do, I'll check usenet, find out their actual address, and then set up a forwarding rule so they get their mail.
--
Hmmm. Both your links seem to be Slashdotted.
--
Sheesh, evil *and* a jerk. -- Jade
"I will gladly pay you today, sir, and eat up
Sacred cows make the best burgers.
root@127.0.0.1 works for me. That way they end up spamming themselves.
Of course, the funniest part is when i am told that someone already registered it.
Hate to seem a bigot, but I use jjohnst@gaul.csd.uwo.ca.MICROSOFT.COM all the time. Send unrequested mail to the unrequested OS vendor.
-- http://thegirlorthecar.com funny dating game for guys
Let's see:
...
07/09/00 21:50:32 whois !NETBLK-PBI-CUSTNET-4056@whois.arin.net
whois -h whois.arin.net !netblk-pbi-custnet-4056
BRE Properties (NETBLK-PBI-CUSTNET-4056)
1700 Promontory Lane
San Ramon, CA 94583
USA
Netname: PBI-CUSTNET-4056
Netblock: 216.100.51.0 - 216.100.51.255
Coordinator:
Campillo, Doug (DC199-ARIN) DCAMPILLO@BREPROPERTIES.COM
415 445-6575
Record last updated on 12-Feb-1999.
Database last updated on 7-Jul-2000 17:53:46 EDT.
>>>>>>>>>>>>>>>>>>>>
HEY! Spam is ILLEGAL in California!!!!!
contact your local attorney general!
"It is a greater offense to steal men's labor, than their clothes"
There's an article on this at sfgate. Your case sounds like Jane Hitchcock's--she was spammed and signed up for magazine and CD subscriptions by a phony literary agency that she had had a dispute with.
There's a watchdog group called Cyberangels that has a division devoted to fighting this sort of childish crap.
---
Zardoz has spoken!
Oper on the Nightstar
Spam to your reply-to: address? I've been using a throwaway From: address and a site-specific reply-to: for a few years now and have *NEVER* got any spam to the reply-to:. /. seems to provoke spam from home.com.
Nothing, nada, zilch.
The From: address gets deluged with crap.
Also, having a real email address diaplyed on
dave
For some reason a large amount of people on Usenet enter their reply-to e-mail as my e-mail address. This is extremely annoying; I receive around 20 e-mails a day responding to various posts, some thanking me for posting something I didn't post and some flaming me for an article I obviously didn't write. It's gotten to the point where I created a generic reply that I send in reply to this mail.
People should either use a non-valid e-mail address or simply don't enter one. If you are using a valid e-mail address all that does is push the spam on someone else.
I've recieved that one three, no four times now. Once per month, and once after I mailed nicely asking them to remove me. I finally gave up on asking nicely and sent them this.
Dear Bill:
My name is Ineyo Montoyota. You have me in your 'spam database' as [address-du-jour].
As much as I find spam in general distasteful, I try to ignore it. In fact, I tend to get a laugh of your messages in particular. See, I'm a nudist living in Grable Community near Parsippany.
You'll never get a sale from me, so knock it off..
Sincerly,
Ineyo Montoyota
.sig: Now legally binding!
>Why is everyone always bashing on drug smugglers?
I dunno. They seem to be universally disliked by governments everywhere, & was the first example that came to my mind.
Whyn't we just Godwinize this line of argument, & say that anyone seeking secrecy is obviously in the business of trafficing in kiddie pr0n? that's right, all of those folks who just want to be left alone are trading pics about how they made Junior do it with Fido!
(Except that there aren't enough child molestors out there on the 'Net trading pics to make it worth the law enforcement agencies' while to ask for an international agreement to watch the 'Net for dirtbags abusing the fiber in this way. They'd rather argue that drug dealers are encrypting all of their dealings with PGP, rot-13, & other computer generated cyphers, & that's why they need to be able to decrypt every communication out there.)
Geoff
I think I see a trend here. Maybe for them it really would be easier to muzzle the entire internet than to produce p
My first experience in nospam addresses was with texas.net which specifically has a nospam.texas.net to help catch spammers. Note that nospam here is a 3LD, not a 2LD. And you can also put the "NOSPAM" in front of your domain without a dot, assuming the total combination is unlikely.
After I got my own domain, I found out that only works properly if the nospam DNS exists. Otherwise sendmail will reject it, even if it's a subdomain of a valid domain. I didn't feel like adding a nospam address because I had learned a better trick.
But what I use now is the "plus hack". See, the user name part of e-mail addresses (at least if you use Sendmail) can have a plus sign added to it, followed by some unique identifier for further routing (or procmailing) of the mail. So I simply use, say, +usenet1 on usenet posts, and once that starts getting spammed, I'll move on to +usenet2.
Some interesting results of that have appeared in my logs. One spammer's software simply removed the plus sign, and another removed everything before and including the plus sign. Either way, "User unknown".
And speaking of logs, I've noticed something VERY wierd in my logs. At first, I thought it was because someone owned my domain before, but now I'm not sure. I would notice "user unknown" bounces of the form "lusername@domain.net", where the domain was four obscure characters (definitely NOT a word). Just random user names. Now maybe a few people were clueless and put ".net" instead of ".com". But I'm not so sure. I think there may be some spammers out there trying random user names at domains for some reason I can't comprehend, probably because the reasons truly are incomprehensible. Anyhow, a bounce is a bounce.
And now with what little spam I get (about 0.5/day, mostly through my someday to be dropped texas.net address), I make a point of reporting to the abuse address of the spammers IP domain, since even most open relay mailers bother to log the source IP address. Hopefully this will help get a few more chickenboners shut down in this eternal game of whack-a-mole.
#naabhaprzrag, #sverubfr-000, #agi-fcbafberq, negvpyr[pynff*=' negvpyr-ary-'] { qvfcynl: abar !vzcbegnag; }
Part of the IEEE single-precision floating point standard. SIGFPE is the signal for a floating point execption. 0x7ff????? is either infinity if all the ?s are zeroes or not-a-number (NaN) if they are not. If forget what NaN is actually used for, but if any kind of calculation involves it as input, you'll get an exception. I believe a divide-by-zero operation will spit one out.
It's probably a Prisoner joke at any rate. "I am not a number, I am a human being!"
If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
For example, I use @spam-yahoo.com for my mail account on yahoo.com. If there's a real domain called spam-yahoo.com, well, they deserve it (there wasn't 6 months ago anyways).
--
You can set up filters to route mails that contain the string "traffic@websidestory.com" in the "From:" field to a folder called Trash.
Go to your mail, click the options, click filters, and set it up.
If tits were wings it'd be flying around.
The first I ever heard about this was warez.blackdown.org (net?), which I read about on the blackdown site. 'twas an IRC log, with some semi-unqualified sysadmin threatening legal action if they didn't stop pointing that adress to "his" machines.
eventually he clued on, but not until he made a severe jackass of himself.
A google search for warez.blackdown.org should be good for a laugh, but I'm lazy.
(2) I know how the spammer got my email address. If the email address was given to a service that promises not to give out addresses I'll know exactly who to blame.
Basically I can track the spammers like doing cookies in reverse. Even if you don't have access to your mail server you can use 'plus' userids at many ISPs although that isn't quite as powerful. Of course I don't want to feel like I'm just a number and that's why the addresses all start with 0x7ff (geek joke - think about it!--
-- SIGFPE
More than likely the owners of spam.tld domains are harvesting spam.
What for? Sevral things. For one exaples of what NOT to do. Who to avoid and maybe just what to add to filters.
As ALL the e-mail to those domains are 100% spam a simple catch and filter system could create an effective filter.
If they go the extra mile they could be looking for scams and reporting them.
We don't know but harvesting spam is hardly an invasion on us.
Whatever they are doing they know spam isn't welcomed and thie spammers are crooks. So from there they are probably just using it for internal use.
hay... know thy enemy... Keep your friends close.. keep your enemys closer...
Chances are good they have some dark and sinister motive... one we'd aprove of... along the lines of "nuke em"....
I don't actually exist.
Well, I usually use 'foo@bar.com'...
but when I'm feeling nasty, I use the root account's email address on that system. I.e. if I'm signing up for foobar service's something-or-other, my email address is root@foobar.com. Most web forms (if not all) don't catch this, and the BOFH gets the spam.
Sure, that's not exactly kind, but you can also put your email address as abuse@yourisp.com which will forward all spam to the spam account.
Or maybe sales@microsoft.com. I'm sure they can use some more...
-- Truth goes out the door when rumor comes innuendo. -- Groucho Marx
Yeah and in fact that is very common. Thats why I use nospam as the -real- address for web postings. The program strips it out and it becomes an invalid email address.
I've also done the technique of using custom addresses for downloads. Then I can easily kill the address if they start spaming it.
Well, most of the "Bulk Mail" filters work by assuming all mail without your email address in the To: or Cc: field is spam.
However, often legitimate mailing lists don't put your email address in To: or Cc:. I subscribe to several.
--
Last time this happened, I looked at the headers of the usenet reply, went to the usenet newsgroup in question, and asked the person to not use my domain for nospam email addresses. The person, rather embarassed, was nice about it and changed his fake email address.
The proper way to make a "nospam" email address is to use "name@example.com", or if you can not do that, use an invalid ".gov", ".edu", or ".mil" domain, such as "compost.gov".
- Sam
The secret to enjoying Slashdot is to realize that it should not be taken too seriously.
If they've vounteering to receive a similiar amount of crap, fine. Let them. It's not like they're ever going to see anything important.
i've been using this one for a couple of years, and found out 2 weeks ago that Mojo Jojo is the name of the bad guy on the Powerpuff Girls.
Pope
Freedom is Slavery! Ignorance is Strength! Monopolies offer Choice!
It doesn't mean much now, it's built for the future.
I have an account that I created for only one reason: TO COLLECT SPAM. I tried really hard to actually subscribe as much spam as possible, but I'm very disappointed with the results. I only get about 7-8 mails a day. Can you help me?
The address is spambox1 through 4 @atlas.cz, that is:
spambox1@atlas.cz, spambox2@atlas.cz, spambox3@atlas.cz, spambox4@atlas.cz
spambox2 is dedicated to spam for porno sites, so please be nice and respect that.
When I have enough spam, I'll try to find some really interesting pieces and post 'em somewhere!
Thanks in advice
tom
Using a forged return address of "@nospam.com" puts undue strain on the network connection of others, namely those people who receive misdirected replies to these mails. You are using an address in a domain you have no authority over and where you hold no legitimate address. In some countries this already is a punishable offense (although these laws were originally created to go after spammers).
If you want a spam drop account, at least create one yourself and do not fill other peoples mailboxes. This is just as offensive as sending SPAM.
© Copyright 2000 Kristian Köhntopp
Privacy.net has an address that you can use if you have to provide an e-mail address for registering software, or anything of that sort. All you have to do is use me@privacy.net for whatever reason, and it provides a bounce message to anyone who e-mails it.
You can read more about it here.
--
--
The real Raunchola isn't cool enough to have any imposters
Those bastards!