Slashdot Mirror
Honeypot For Identifying Email-Harvesters
Cheese Man writes "Mark Pilgrim describes a simple way to identify email-harvesters: "In each page I serve, I include a bogus email address, encoded with the date of access as well as the host IP address ... This has allowed me to trace spam back to specific hosts and/or robots." There's even a simple one-line example done with PHP. (Thanks to BoingBoing for the links.)"
Lots of people, including me, use different middle names or initials when applying for something in writing, by snail mail or by telephone. When junk mail comes back in the mailbox, it's easy to know what company sold your information to whom, or at least which company was the initial recipient of the bogus info and which was the last.
...
Old new
"A door is what a dog is perpetually on the wrong side of" - Ogden Nash
Try wpoision, it's a CGI script to generate a random set of email address, infinitely deep. Very fun.
I want to delete my account but Slashdot doesn't allow it.
And also not require register_globals be on (better for security if you can set it to "off"):
@ EXAMPLE.COM'; ?>" title="Go ahead, Spam me">Here is my email address</a>
<a href="mailto:<?php echo $_SERVER['REMOTE_ADDR'],'_on_',date('y_m_j_Gi'),'
(Slashdot adds an extra space before example.com)
This scam made the NY Times today: E-Mail Swindle Uses False Report About a Swindle
You can often do this even without a throwaway domain. Many addresses can be tagged by adding a "+" (plus-sign) and anything between the user name and the @-sign.
For example wheany+sd@iki.fi, wheany+SpamTastesGood@iki.fi, wheany+glahglahglag@iki.fi, wheany+spammer.com_on_06_22_2003@iki.fi all go to the same mailbox.
I've had problems with Cyveilance and my domains. I have a few domains that I dont use anymore, but they still point to my servers, though they dont have any records in my DNS servers.
Their robots tried to crawl those domains - they kept on querying my DNS servers for about 10 minutes straight even though there was no record for that domain on my DNS
> Come on, you can't have it both ways.
> You're either pro government control or against it,
Why not?
Things are rarely polar opposites. You can't just say, "Well kid, are you a communist or for a lassiez-fair market." There's tons of middle ground.
The formal name for this is the False Dichotomy. More
Extremes only really exist as abstract concepts.
Advocating regulation or laws to protect against abuse is hardly pro-DMCA.
How Cheese Man got mixed up is beyond me, as comment by George A. Theall is clearly displayed at the bottom of the comment.
Comment removed based on user account deletion
Congratulations! You have just re-invented SPEWS (spews.org).
Another tool to throw a spanner in the works for spammers is mod_spam_die for Apache. It generates a random page with recursive links and fake addresses, thus causing the spammer's database to fill up with useless addresses. There's an example at chaz6.com/spam_die.
Huh?
No, spews is only based on reports to a news group and some unknown persons responses to those reports.
Talk about false positives. When you block entire class C networks, you are going to get false positives. I can find a network listed with them, and send email to from a machine on that network (that has NEVER sent spam before) and spews will block it. Was my email spam? NO, therefore it's a false positive.
Plus when it takes over 6 months to get a network removed (if not longer), it is just about worthless.
BWP
[100% ISO 646 Compliant]
SVM, ERGO MONSTRO.
I did a few small honeypots for the spammers to play with. SMTP and proxy.
Do you care about the security of your wireless mouse?