Slashdot Mirror

← Back to Stories (view on slashdot.org)

Who Reads Your @nospam Mail?

Posted by CmdrTaco on from the never-thought-about-this-one-before dept.

pjbrewer writes: "Ever use an address like name@nospam.com when filling out a form on the web or registering software? Think thats safe? Somebody is surely receiving messages destined for these fake nospam emails... and for curiosity or boredom, I checked it out. Nospam.com is owned by Anything.com, which is apparently, as it says on their web page, based in the Cayman Islands. Their page gives a short bizspeak blurb about what the company does (provide strategic advice to internet companies and vc-types). Offshore corporations can be as legitimate as any other, so why does this suggest concern? Could it be that the owners or managers of nospam.com want to avoid US laws for some reason? The Caymans sound like a place to incorporate rather than a place to set up offices and a T1. Am I overly paranoid, or is there something interesting that could be done to analyze people's use of *@nospam.com type addresses or some other interesting use of this content they must be receiving? Nospam.org and Nospam.net appear to be net malls owned by BestOfTheNet."

7 of 259 comments (clear)

  1. Check out asdf.com too: by Tom7 · · Score: 5

    Check out this page at asdf.com, too:

    http://www.asdf.com/asdfemail.html

  2. It's Happening to Me Right Now by InitZero · · Score: 5
    wouldn't it be fun to put someone's e-mail that I don't like in my message, to get them spammed to oblivion?"

    It would NOT be fun.

    Since June 5, I've been the person of which you speak.

    If you have done a gnutella (or clone) search in the past few days, you probably have seen my name...

    gnut> find anything CURRENT RESPONSES ----------------- 1) email matt@steinhoff.net for kiddie porn and anything 216.10.33.21:6345 size:80.854M ref:84279680 speed:10000

    It all started when I noticed that every query I submitted returned an html file. In that html file was a link to http://www.cybergirlsex.com/raw cash/click.cgi?tella...

    gnut> find anything and everything CURRENT RESPONSES ----------------- 1) anything and everything.html 216.100.51.42:6345 size:2.83K ref:234946611 speed:10000 gnut> find nothing at all CURRENT RESPONSES ----------------- 1) nothing at all.html 216.100.51.42:6345 size:2.83K ref:117638272 speed:10000

    I figured that an ambitious person had hacked gnutella in order to promote the web site so that he'd get some extra cash. I sent email to the the owner of 216.100.51.42 and they promptly shut off the user's connection. I also sent email to cybergirlsex.com in hopes that they wouldn't pay the user 'tella' for the referrals. Spam shouldn't pay no matter how it is done, right?

    Ever since I sent the email message to the domain admin for the porn site, my name and server address has been showing up in each and every gnutella response. Cause and effect (and a bit more) leads me to believe that the porn site was 'tella' and they are not happy that I've cut into their revenue stream.

    With a bit of investigative work I was able to tie the user who is spamming gnutella with the user who admins the porn site and more than two dozen other domains.

    I've got the guy booted off a number of services in the past few days but that isn't much help (though it does make me feel a bit better). It's like playing wack the mole; hit him in one place and he pops up again elsewhere. I'm getting hundreds of email messages from people either looking for child porn or wanting me dead for supplying child porn. (Of note, of course, I don't have any child porn so stop asking.)

    I've contacted the FBI's computer crimes division and they are far more interested in the folks emailing me looking for kiddie porn than they are in getting rid of the slime ball spamming my email address. At least the kiddie porn angle got their attention or I imagine this wouldn't have even made their radar.

    So, what can I do? I'm already filtering my email so that I don't have to read through hoards of email. (Did I mention that he has also signed me up to dozens of mailing lists?) What's next? While tracking and smacking the first day was exciting, today it's a bit of a drag.

    Any good ideas will return my eternal gratitude. (Any especially nasty ideas and I'll give you the guy's email address. {grin})

    Matt Steinhoff

    (I had posted this as an 'Ask Slashdot' a few days ago and, of course, Slashdot would rather post Anime Moves on DVD.)

  3. Use example.[net|com|org] by wfberg · · Score: 5
    Example.net, .com and .org are domain names that will never be registered to any one, they're reserved specifically to be used in examples in textbooks etc. There are no DNS entries for these domains, so all mail should bounce. Thank the boys and girls at IANA for this nice service ;-)

    Of course, loads of domain name registrars and ISPs advertise with yourname.com.. Which is of course a competitor! Doh!!
    --

    --
    SCO employee? Check out the bounty
  4. O the humor... by nutty · · Score: 5


    root@127.0.0.1 works for me. That way they end up spamming themselves. :)

    Of course, the funniest part is when i am told that someone already registered it.
    ;-p

    /nutt

  5. I have an approach to dealing with spam by SIGFPE · · Score: 5
    Whenever I sign up for any kind of service I generate a random 32 bit integer. This is the email address I use to sign up. For example for slashdot I use (4 more than 0x7ff00000)@sigfpe.com. I have a little database that maps these integers to the service I signed up for. If I receive spam on one of these addresses (1) I can remove the address from my /etc/aliases and

    (2) I know how the spammer got my email address. If the email address was given to a service that promises not to give out addresses I'll know exactly who to blame.

    Basically I can track the spammers like doing cookies in reverse. Even if you don't have access to your mail server you can use 'plus' userids at many ISPs although that isn't quite as powerful. Of course I don't want to feel like I'm just a number and that's why the addresses all start with 0x7ff (geek joke - think about it! :-)
    --
    --
    -- SIGFPE
  6. Re:So don't do that. by Syberghost · · Score: 5

    Actually, yahoo can do what they want with your email, including letting anybody they want read it. Since it's on servers they own, technically, they own all the email, even users private email.

    That has been incorrect since 1986. There is a specific law against it in the United States, and it is a seperate felony count for *EACH* email.

    Just like at work, you're employer has rights to read and do what they want with your email since it's on their equipment.

    That is a specific exception in the law; your employer can read email that exists in their mail system, and they can prohibit you from accessing your private mail from work (and fire you if you do), but they can't look at your private email even if you access it from their equipment.

    Trust me on this one; it's what my last employer's lawyers told them shortly before I left. :-)

    --

  7. send me spam! c'mon! by tomaasz · · Score: 5

    I have an account that I created for only one reason: TO COLLECT SPAM. I tried really hard to actually subscribe as much spam as possible, but I'm very disappointed with the results. I only get about 7-8 mails a day. Can you help me?
    The address is spambox1 through 4 @atlas.cz, that is:
    spambox1@atlas.cz, spambox2@atlas.cz, spambox3@atlas.cz, spambox4@atlas.cz

    spambox2 is dedicated to spam for porno sites, so please be nice and respect that.

    When I have enough spam, I'll try to find some really interesting pieces and post 'em somewhere!

    Thanks in advice
    tom