My Short Life As An Unintentional Porn Spammer

Freerange writes "Mike Masnick wrote up his experience getting slammed by a somewhat new kind of spam attack that doesn't get much hype (yet?). A spammer spoofed his personal email address as the 'reply-to' for a batch of spam, with interesting results for Mike: "I can now answer the questions 'who replies to spam?' and (should anyone ever wonder) 'what are the hundreds of variations on bounced messages?'" From Politech."

What to do with all that spam you get...

[insanecarbonbasedlif]

It makes good eating, even if it's a little strange

I tried the first one, and the paper doesn't mix too well, but once the eggs soak through, it cooks up well... not too flavorful. It's more of a filler like Tofu.

What the Internet needs:

[unterderbrucke]

A proprietary mail protocol by a major power (MS?) to eliminate IP address/e-mail address spoofing.

Re:What the Internet needs:

[pomakis]

It's funny people are modding you down cuz you mentioned MS. [...] Anyways, I gave you a few extra points.

Waaaiiit a minute... that shouldn't be possible! You can't mod something and then reply to it! And what do you mean "a few extra points"? Cheater!

Skynet

[OwlofCreamCheese]

its not going to be military computers that come alive and kill us all, its going to be the spam filters! I mean, its going to take some serious adaptive AI to filter out spam at this rate...

and the conformforting thought:

when spamfilters come alive... their prime directive will be "eliminate anything that is worthless"

Re:Skynet

[Feztaa]

when spamfilters come alive... their prime directive will be "eliminate anything that is worthless"

It wouldn't be all bad; at least we'd be rid of Microsoft once and for all.

No way to contact spammer

[$$$$$exyGal]

I am repeatedly surprised by the amount of spam out there that does not contain any way to contact the spammer. How do they expect to make money if there is no way to contact them?

--sex

Re:No way to contact spammer

[nomadic]

Volume!

Re:No way to contact spammer

[ColdForged]

I am repeatedly surprised by the amount of spam out there that does not contain any way to contact the spammer. How do they expect to make money if there is no way to contact them?

Are you really gonna leave that hanging up there like a big, juicy grapefruit?

1. Sling a kajillion spam messages with no contact information whatsoever.
2. ???
3. Profit!

"We apologize for the previously displayed shenanigans. Those responsible for that ordered list have been sacked."

Re:No way to contact spammer

[ewhac]

Can I turn off HTML email in Outlook?

Um, uh... No! Yeah, there's no way to turn off HTML mail in Outlook. Yeah. Outlook has no provisions for safe email reading.

To be completely safe, you should... Uh... delete Outlook entirely. Mmm, yeah, delete it. Outlook gone. Perfectly safe. Yeah, that's it...

Then you can safely install a safe email program, like... Er... Mozilla! Yeah! Or Evolution! Yeah, Evolution. I use it. And so does my wife... Morgan Fairchild...

Schwab

Not happy...

[Space_Nerd]

...with all the spam replies and such he got, he now decides to take it a step further and slashdot his server!

Way to go!

Who replies to spam

[WIAKywbfatw]

I can think of a few. People looking for:

• Penis emlargements;
• Viagra;
• Boob jobs;
• Sex;
• Porn;
• Rebuilt credit;
• Credit cards;
• Cheap mortgages;
• Cheap health insurance;
• Cheap dental insurance;
• An easy way to make millions from home with little effort!;
• University Diplomas;
• Free anything; and, of course
• Spam lists.

Spammers try to sell (gullible) people what they might buy, never what they won't. I've yet to see a spammer selling flights to Mars - although I do predict it will be a growth area for spammers in 20 years time.

Re:Not New @ All

[jo_ham]

That's what baseball bats are for.

If the FBI won't take it further, you could always beat seven shades of shit out of him, then when the police arrest you, assume his identity.

Re:Report them to the FBI

Yeah, the FBI has nothing better to do than make sure your free Hotmail address is safe. Mulder and Scully will be right over.

Coming next...

[Bazman]

My Short Life as A Slashdotted Person

"So I got this story posted on slashdot after that time gigabytes of bandwidth got used up by that fake porn spam address, and so the site got slashdotted and that used up even more bandwidth until my ISP decided to limit my access, so I got another story posted under 'YRO' on slashdot about that and...."

Re:Reverse spam really isn't that new...

This is indeed old news.

You took 4 minutes of my life and I want them back! Oh, I only would have wasted them anyway.

Re:Spam needs a technical solution.

[sean23007]

Yeah, so let's stop looking for that quick fix, so we can finally get this fixed quick!

Re: Happened to Me 3 Times

[Black+Parrot]

> First you get millions of bounces. Then you get hundreds of angry replies. "TAKE ME OFF THIS LIST!"

What I hate is when the spam includes all the victims' e-dresses in the header, and a bunch of people reply/all demanding to be taken off the list. Then a bunch more people reply/all saying "you're an idiot", and then a bunch more reply/all saying "so are you, idiot". You could probably bring down the internet if you included enough e-dresses in the header.

Re:Sorry, new?

As 10^100 other people will tell you this is not new.

i.e. "I'm -1 redundant and I know it!"

Spam Addresses

[David_Bloom]

Someone needs to register a domain name and make anything@foo.bar automatically forward to UCE@FTC.GOV . That way, when we sign up for sites and such that filter out users who use UCE@FTC.GOV as their email, there will still be a way to prevent junk mail. Also, sites that list randomly generated fake emails to slow down spambots could be made more effective.

Re: Reverse spam really isn't that new...

[Black+Parrot]

> The new one i've run into recently is they use some kinda script so that the reply-to address in my address....which makes fintering really easy becuase how often do I send mail from my account TO the same account. However I could see some stuipd user getting very confused.

...and replying to himself in outrage.

Better than Disneyland?

[harlows_monkeys]

Q: You've had your email address forged on spam, subjecting your mail server to many many many bounce messages and complaints. What are you going to do now?

A: I'm going to slashdot my web server!

Killed or Hurt Spammers

[PerlPunk]

Have there ever been any cases of an e-mail equivalent of "road rage", where someone (or a group) has actually went out and either physically harmed a spammer or killed him?

Re:Reverse spam really isn't that new...

[Greg+Hewgill]

That reminds me of when it was cool to tell lusers that there was this huge ftp site at 127.0.0.1, just log in with your existing account...

Re:Yeah, us too

[FuzzyBad-Mofo]

So I guess you could say spam lowered your productivity? :rimshot:

Most users too clueless...

[ackthpt]

Most users are too clueless to realize it's really not coming from that address.

I've given up on most of it. The best way to figure out where junk is coming from is to just view the contents as ASCII, which The Bat does very nicely. (Show kludges shows headers) Most of the time there's a phone number or website and doing a whois on many will reveal the villain.

There are urls which are use just the IP address and those which look like HTTP://434328432849, the number being an IP address, not in the form 127.0.0.1, but the sum of 1+0*2^8+0*2^16+127*2^24, a neat way of masking sites.

Other news... I was just checkin a website I've had for 4+ years and never checked the mailbox that came with it. It filled up Mar 23, 2002 and has 1,669 pieces of mail, mostly spam. Looks like I'll be cleaning it out on Saturday. It would be an interesting project to archive it all and see how many violate California's anti-spam law and see if I can Make $$$$ At Home!

Re:It happened to my wife!

That was *your* wife?

Sorry man. I didn't know.

You have to admit though, I bet you never expected to see a picture of a guy doing that to to a chicken.

since they have a threshold

[commodoresloat]

only break $5000 worth of his bones. then you won't be worth investigating either.

Re:since they have a threshold

only break $5000 worth of his bones. then you won't be worth investigating either.

Unfortunately, crimlaw for assault and violence doesn't have minimum dollar amount damages. Too bad, really, as a spammer's life isn't worth more than a $1.95.

Re:I hear ya!

"...and he was without cable for 3 days"

The horrors!!!! *shudder*

You Don't Like The Mail Admin, Do You?

[Myriad]

Our domain is productive.com so any email to whatever (at) productive.com comes back to the admin email accounts. As you can probably guess there's quite a few spammers that use productive.com as reply-to.

Given that you just entered the domain name not once, but twice, and your post is likely to be seen my thousands, spidered, and google-cached, I take it that you don't like your mail admin very much, do you?

not just the internet....

[commodoresloat]

This whole experience turned my wife off of the internet for a long time.

I bet she wasn't much into sex with animals for a while after that too.

Re:I hear ya!

[davmct]

are you sure it wasn't YOU that were spamming on his account by leaving a worm virus on his machine? what kind of a name is spammeister anyway?

IQ Test

[nuggz]

Press CTRL-ALT-DEL now for an IQ test.

Re:IQ Test

[shepd]

Which button is it???~!?//!?11

LOCK WORKSTATION, logout, shutDown, _Change Password, TaSK L1st, or Cncel?

I MUST KNWO! Give me answer! Pleez! NOW! Right NOW! PLEAEEHZ! PLEEZ!

Re:IQ Test

Duh. It's a trick question.

The *real* IQ test button is hidden on the back of your computer near the power cord.

Re:IQ Test

[schon]

Press CTRL-ALT-DEL now for an IQ test.

Reminds me of my days as a BBS sysop..

My board forced registration before you could post anything - in the registration sign-up (before it asked for any information) I had it say "Press any key to begin. If you don't know which key is the 'any key, it's the large one on the front of your computer labeled 'reset'

Over the course of the 3 years I had it running, the logs showed two people drop carrier immediately after reading that.

Re:IQ Test

[rwise2112]

Check out this User Friendly RE: any key.

This one cracked me up.

Re:IQ Test

[nytes]

Simple - the first thing you'd get is a bunch of calls to tech support complaining "I pressed the 'B' key and the program went ahead and did it anyway!"

Re:Reverse spam really isn't that new...

[BlueUnderwear]

...and others insist that we have to stop whoever is doing it immediatly...

Hard to do... Easy solution: just block the bounces at your mailserver, at least then the lusers won't notice the problem any longer...

Re:Reverse spam really isn't that new...

[evilviper]

just zip up your files and attach a password to the transmitted zip file.

should you get side-tracked and not make it home (eg, if you get lucky and score

What kind of a geek ARE you??? Not only do you talk about zip rather than gzip/bzip, then call zip passwording "secure", but you also talk about getting sidetracked by scoring, rather than some more sci-fi reason, like being shot at by storm troopers, attacked by some creature from LOTR, etc. Come on, get it together man! This IS slashdot afterall.

Re:Why?

[evilviper]

Which goes into the trashbin first, hotsex69@sexparty.ru or ltrovalds@linux.org?

Well, if Linus can't spell his own last-name...

It happened to me too, but I got a little revenge.

[antigone]

in the last 4 days my yahoo account (which i've had for years and don't want to have to change) has used its' 6mb quota up 17 times because of all of the undeliverables i'm getting back from this spam I didn't send. I volunteer for a Forensics K9 Search group and I get emergency call-outs sent to this address, so my mailbox filling up and bouncing messages is a very very very bad thing. (side note: this week NASA contacted us saying that if they needed to call in groups from outside CA and TX we were next on the list to be brought in!) This morning was the last straw..i got over 1000 bounces again and I decided to take a closer look at the SPAMMERs site. It turns out they have a crappy verisign shopping cart that does not, in fact, verify credit card numbers beforehand. So i submitted the form about 1000 times before i got sick of it. If you'd like to have a laugh, or to help me get revenge, then click the link below to see a screenshot of their website with the info i filled in the form, as well as the URL to the SPAMMER's page...

This is NOT the spammer's page, just a link to a screenshot of their page with the URL included

next attack

[Trailer+Trash]

Mike Masnick wrote up his experience getting slammed by a somewhat new kind of spam attack that doesn't get much hype

Now he gets to write about a somewhat old type of DOS attack known as "getting slashdotted". Actually, his site seems to be holding up well.

MDC

Re:Reverse spam really isn't that new...

[jovlinger]

many years ago, at this site, i believe, it was reported that someone registered warez.blackdown.net as 127.0.0.1 Could have been SA too.

The chat logs as people came in fuming and it slowly dawned on people that they had been had were priceless

Spam Radio

[seekohler]

He could always bounce some of the more humorus replies to Spam Radio for everyone to enjoy.

Re:Reverse spam really isn't that new...

[David+Gould]

That reminds me of when it was cool to tell lusers that there was this huge ftp site at 127.0.0.1, just log in with your existing account...

No, it's "Dude, I hate to be the bearer of bad news, but I'm afraid you've been hacked -- the FTP server at 127.0.0.1 has all your personal files. See for yourself; just log in with your normal id..."

Thing is, it only worked when a sufficiently naive person would still be likely to be using a Unix system and be familiar with FTP, whereas now, even having heard of those things is something like a guarantee of knowing too much to fall for it.

Speaking of falling for it, though -- didn't I read here a while back that this particular troll had been used on the Scientologists, with spectacular success? Like, they were in court taking a deposition and their lawyer was shouting at the guy "Tell us who runs the FTP server at 127.0.0.1!"

Re:Reverse spam really isn't that new...

[AndroidCat]

You're welcome. I can hear Keith saying that. Heh.

Jerking the chain of $cientology is always fun. I had one alt.religion.scientology handler threaten me with legal action unless I immediately took down my site .. hisname.isgay.com, ah my! Another time, I contacted a number of critics by email and we started the rumour of a phantom web site called Umbra Xenu, home of the ARSCC [wdne]. (The joke is that I do have a phantom web site with a dynamic IP and weird ports. I'll have to scan my logs some day.)

Re: Reverse spam really isn't that new...

[Have+Blue]

...And replying to himself in outrage.
...And replying to himself in outrage.
...And replying to himself in outrage.
...And replying to himself in outrage.
...And replying to himself in outrage.

It's "How do you keep an idiot busy for hours?" for the new millenium!

Re:Replying can help stop spam...

[isorox]

Do you people simply not bother to see to whom this message is going to? Do you not bother to do market research to see if I'm even going to be able to use the product? I am a man. I have a penis and not breasts. I am a guy, a bloke packing a "willie", a "johnson", "meat and two veg", a "one-eyed trouser snake", a "little fellow", a thingie, the "outy" parts to match up with the "inny" bits of the people to whom you should be sending this spam to and not me and my "Collection of dangly bits".

To put it simply people..."A DICK"


You've got balls man...