Slashdot Mirror
Automate Spamcop Submissions
hausmasta writes "Spamcop is pretty much dependent on user input. If no one submits and verifies spam, then they will have no blacklist. However that whole submission and verification process is a bit annoying. Why should I bother to actually submit spam to Spamcop and have it verified? If I just delete it, that will take less time.. This tutorial shows how to automate the Spam Cop submission and verification process. All I do is just put the spam into certain folders and our good old friend cron does the rest."
I guess this will make it much faster to build black lists. But doesn't this also increase the potential risk of submitting wrong messages?
Is this compliant to Spamcop's terms of services? Automating might make it too easy to accidentally submit false positives...
please make sure to unsubscribe from all mailing lists you subscribed to before doing this.
Apparently you've missed the point of SpamCop. YOU are still supposed to VERIFY that EVERYTHING you submit is ACTUALLY SPAM. False reports hurt SpamCop and all SpamCop users.
If you want to cut down on Spam, then tighten you filters and reject it at SMTP level. Then anything that still makes it through, submit it to SpamCop. Automating your initial submission is okay, but DO NOT AUTOMATE THE VERIFICATION PROCESS.
Give me the ability to check my spams and submit them to SpamCop (rather than having to go through each webmail's contortions to get full headers) and I'd have lots more food for the SCBL. On my personal server, I block all of LACNIC and APNIC, so I don't get much spam there.
I too have felt the cold finger of injustice.
... you might want to reconsider using any of them. Lots of companies that have nothing to do with spam have been targetted due to proximity in IP space, or using a provider the RBL maintainer hates.
RBLs are a waste of time, they give immense power to a few individuals and groups, more often with an axe to grind. Do you really want to do that? Rhetorical question, you don't.
The new Darwin award goes to....
I did "Select All" and went through the list looking for false positives. This process was only time consuming if you didn't do it regularly and it reassured me that I knew everything that was being reported was indeed SPAM.
Oh sure, it's quicker for any given email, but if you just delete it, Spamcop will never know about it. If Spamcop never knows about it, it'll never block it. If it never blocks it, you'll just keep on getting the spam. The more spam you get, the longer you spend just deleting it...
It's official. Most of you are morons.
I have spamcop checking turned off. Maybe because the service is tuned to north american audiences, I don't know, but its recommendations seem completely arbitrary and frequently mistakenly marks genuine email for me. With two emails (from a legitimate source) one can be marked OK, the other one not.
By contrast, local filtering generally works excellenty. When I finally turned off all on-line checking, I have a perceptible bump in the quality of filtering.
Trust the Computer. The Computer is your friend.
http://dictionary.reference.com/search?q=dependant
At the bottom:
"dependant
adj 1: contingent on something else [syn: dependent, qualified]"
they constantly list and relist one mf my servers because it bounces mail back to them. well, it is not a bounceback. it is an auto reply to a mailing list submission that customers actually use.
measuring the mail we get from non-customers, the amount of mail that is not valid that gets a reply is negligible.
yet, spamcop decides that ALL auto replies are spam.
the only explanation I can come to is that most of that mail is from their super secret spam finding system.
wrong.
Well, submitting the mails may be interesting, but here's a (probably) even better idea.
:)
1. Maintain a repository of scripts for offending webshops (can be based on SF, or distributed by P2P). Each of the scripts goes to post a complaint in BlueFrog-like manner.
2. Write an extension to Thunderbird (and maybe to others as well) that, when I click a "Junk" on a mail, goes and fires the corresponding complaint script. Alternatively, have a cron job for that.
3. ???
4. Profit
Well, look, this is much less questionable than Blue Frog's approach - I'm actively and individually complaining on the spam I got. I don't have the registry of those who want to be exempted - just to annoy the spammers and drive them out of business. What the program actually supplies is automation of the complaint process, without which I, arguably, would not bother complaining - but if it's just one click, I may choose to do so!
SpamCop parses the email, and unless you've got some great regexs in your brain, reading the email's source isn't going to give you the same output. SpamCop may read the headers or body differently than you did, possibly selecting innocents, which you're supposed to manually look at and decide on.
You can simply ask the SpamCop admins to enable so called "quick reporting" for your account. Then, you just change your address from submit.RANDOMHASH@mail.spamcop.net to quick.RANDOMHASH@mail.spamcop.net, and you're all set. The spams you forward (via attachments) to this address are auto-reported immediately, no need to go clicking on the website.
The only slight drawback to this method is that quick reports only get sent for the source of the spam, but not for the web sites advertised in them.
The user who submits the spam may comply with a "spam submission" police, after the system administrators see that's a spam then will be sent to spamcop. Never let the final user do the poor job.
http://www.michel.eti.br
Do you think anybody at spamcop cares about false positives? If they care, there's no evidence of it. My server was blocked by spamcop this past week. Why? I have no idea, and no way to correct the problem, because when they block you, all they say is "You sent email to one of our secret addresses."
Don't piss off The Angry Economist
Mechanize::SpamCop is another tool you can use.
If one subscribes to a pink contract ISP and can't get one's legitimate email through, the obvious solution is to change ISPs.
If both ISPs that offer service to one's geographic area are pink, then how does one find the money to move and a job in the new location?
I'm a longtime spamcop.net user. I've used it to filter numerous email addresses through its spam filter, which is effective and accurate, and highly configurable. However the allure of GMail prompted me to forward my other addresses to GMail and begin phasing out the spamcop address. Which is when I noticed something interesting:
I don't receive spam to my spamcop.net address! This result is very interesting, mainly because my spamcop address is a "dictionary word" address. I can only conclude that spammers must avoid spamcop.net email.
Which is making me rethink my decision to phase out spamcop.net. Have any other long-time users noticed this with their spamcop.net email?
Be heard || Be herd
Why not modify Blue Security's Firefox reporting tool? It used e-mail for reporting spam from yahoo and hotmail at Blue Sec.
The person controlling the server that your server was trying to send a message to was using a SpamCop blacklist as a rejection list.
If you want to complain, complain to that person.The reason to keep those addresses secret is because if the spammers found them, they would not be useful anymore.
If you have a static IP address, the problem is you. Someone with access to your out-bound email is sending spam.
If you have a dynamic IP address, you need to get a static address.
If you cannot get a static address, do not expect your email to always be delivered. You must monitor your logs for the rejection notices and then take whatever actions are necessary to get that site to whitelist your messages.
Don't blame SpamCop for the situation that results in your IP address being reported to them. No one is forced to used SpamCop's blacklists. They choose to use them because they believe they are useful in reducing spam.
The problem is that Spamcop encourages people to use it as a way to reject mail at the entry point, rather than as a tool for spam scoring (Spamassassin, etc.) ...
;-) ... They eventually manage to hit one of spamcops honeypot addresses and we instantly get blocked in a manner in which we cannot track where the rogue spam came from! Spamcop does not provide copies of emails that hit their honeypot, for understandable reasons, but surely they realize that it also makes it impossible for an admin of a large organization to pin down the spammer...
We frequently get blocked because one of our users desktops has been pwned and the virii manage to SMTP-AUTH using our users login and password. (usually not too hard to manage) These ones we can catch pretty quickly with our logging system.
The really painful ones are when someone finds a hole in an application we're hosting for someone and spews mail through it (formmail.pl, anyone.
Spamcop needs to adjust their website to explain how to use their list to score spam, and they need to ditch the honeypots and stick to user-submitted spam until they decide to work with the ISP's that are actually trying to eliminate it.
On the incomming mail side, we love Spamcop. We score the mail higher using their blacklist and let our users set the trigger level for either deletion or automatic filtering to a sub-folder.
Hmmm Betty. The cat did a whoopsee on me manual spamcop submissions.
Seriously, this just increases the risk of false positives.
Hmmm.
Google runs GMail's system so that their servers are the LAST verifiable IP address in the chain.
What that means is if I upload a message to a GMail server, their headers will NOT include the IP address of my machine.
So SpamCop has no way of identifying the IP address that originally sent the spam to the GMail server.
So SpamCop reports the GMail server as the "source" of the spam. And that IP address gets blacklisted.
Personally, I believe that the "free" email services should assign people to work with the various blacklists. Even if Google won't change the behaviour of their servers, they should still be able to help SpamCop find the correct IP address via the unique message ID of each email. And also correctly identify the IP addresses of their mail servers so SpamCop wouldn't have to guess if it was a legit GMail server or not.
I've had to whitelist GMail, HotMail, Yahoo! and even AOL's mail servers at the SMTP level because of this. And it is NOT easy finding which IP addresses belond to their mail servers. They still run through SpamAssassin (because of the Nigerian royalty scams) but they are always accepted.
It's a "solution" and it mostly works for me. I just with the "free" email services would run their own RBL's so I could verify the IP addresses of servers that HELO with *.google.com or just gmail.com.
My main address is fairly old - I have been using it for over ten years. I've also been using it with wild abandon pretty much anywhere on the net for as far back as I can remember, and it attracts an absolutely ridiculous amount of spam today. If it was a person, it would have it's own red-carpeted VIP entrance at the veneral disease department at the university hospital.
I today filter with a bayesian filter, and only with a bayesian filter - I quit using those on-line services over a year ago. In addition I pre-approve some addresses to make sure I don't miss anything from people important to me. I see perhaps one spam every third day on average. It spikes temporarily when there's a shift in tactics - I get three or four a day - and then it calms down again to one a week or thereabouts.
Trust the Computer. The Computer is your friend.
Think of the time spent verifying spam as an investment; use your time now and have far less spam/worries about genuine mail being marked as spam in the future. Not to mention the saved minutes that you can spend browsing slashdot more thoroughly.
Everyone I talk to didnt vote for him - how is he in office
...is spam Spamcop?
Find environmentally and socially responsible products on http://buy-right.net
The more widely known your email address becomes, the greater the chance that some zombie or virus will see it in someone's address book and send spam pretending to come from you. Spamcop will generally believe that you sent the spam, as far as I can tell.
They routinely list w3.org (W3C) as a source of spam for this (incorrect) reason.
Spamcop says you should not use their results as authoratative, but only as one factor to consider, but in practice a number of large companies blacklist anyone listed by spamcop automatically.
If you are going to automate submissions to spamcop, please at least use SPF to verify that the sender was in fact associated with that domain, where SPF records are available.
Live barefoot!
free engravings/woodcuts
I too am a long time spamcop user... But spammers do not avoid my account. However, my wife who also has a spamcop address receives almost no spam. Biggest difference I guess is my address is everywhere on the net.
There are some services provided on the internet that make your server more likely to get hit with these stupid things, and personally I think that services like this are nothing but a pain in the ass and a crutch to people trying to run some types of non-spamming sites...
In example, I run a couple online forums. These forums can be configured to send notification messages to it's users when someone replies to a post they made or sends them a private message. They can also subscribe to threads and get updates anytime someone makes a new post that meets their subscription. I was added to a blacklists in the past because suddenly someone who REQUESTED these simple notification messages (which most people find very nice to get) decided that they didnt want it and submitted it as spam.. Suddenly my entire server cant send emails to anyone running that blacklist, for no good reason whatsoever.
The problem with these services is that they require end users to be smart. Problem with that is there is alot of stupid idiots on the internet that will submit shit that should not be submitted, something they asked for that could be turned off by simply changing their profile options.
I hate those stupid services, and I will not run them on any of my servers, I'll deal with the junkmail and let each individual person deal with the junk as it arrives in their box, most email clients do offer junk mail filtering, and I figure that if they are not smart enough to use them (or ask for help setting it up) than they can deal with it. I would prefer this over people who do know how to use a computer not being able to get emails from legit senders.
+++ATH0 NO CARRIER
All I do is just putting the spam into certain folders and our good old friend cron does the rest.
Man I can't believe we're still doing this. Cron? The proper way to do this is to have a "Spam" button on your email program that triggers a script (and preferrably provide default scripts for things like SpamCop).
Fuck you you little shit sucking worm. You and your "business" is the reason that SpamCop and others are necessary. And every single shit for brains like you will always start their posts "I don't send spam".
Yes you do. And I have to spend time finding ways to stop you from filling up my end users' mailboxes with your spam.So
Sure they do.Here's a free clue. I don't give a rat's ass how fucking hard I make your job.
Company A = you
Company B = your client
Company C = evil competitor
You were talking about working at an "EMail marketing company"
Right
So
Otherwise, you're taking email addresses from a blacklisted company and sending "not spam" ads to them.
And you expect me to believe that or have sympathy for you?
Hahahahahhahahahahahahahahahaha
SpamCop sucks since it blindly "trusts" anything that is submitted. I hope that spammers use this automation procedure to submit every server in the world and thus render SpamCop as the useless piece of crap that it truly is.
A possible alternative is to use YPops! (another sourceforge project) for gathering your Yahoo! mail's Bulk mail folder. Then, using another SMTP server (like your ISP's) forward the bulk mails to SpamCop.
Only problem is that I keep hearing from friends who have really locked down mail servers but keep getting blocked by spamcop...yet spamcop claims the friend's mail server sent a message to one of their secret mailboxes.
Don't blame SpamCop for the situation that results in your IP address being reported to them.
I'm sorry, but that's pass-the-buck bullshit. If spamcop is technically incompetent, of course they should be blamed when they improperly list someone.
Please help metamoderate.
(Posting as AC, but I'm a registered user who posts often)
(Posting as AC because I know what I'm doing is wrong and I don't want people to harass me over it)
I work at an EMail marketing company (no, not spam) and we have had our servers placed on blacklists multiple times... you know why?
I drain the life blood of the internet at a Spam farm and we have had our spambots placed on blacklists multiple times because the tripe we send out is flat out spam.
People who are competetors to our clients signup a spamtrap email to their lists, getting our mailserver blacklisted for sending mail to an address -- even though the mail is a "are you sure you wanna subscribe?" message?
People who receive our spam report it to RBLs and our spambots get blocked even though our spam has circular links which verify e-mails of the people that we spam.
Your casual attitude toward "oh well, shouldn't have sent email to $secretspamtrap" without telling us *what* email or giving us details on how to avoid it in the future (like maybe adding your spamtrap domains to our lists that trigger "oh no, spammer" in our checks), you end up making RBLs more useless, and my job harder.
You are making my life as a spammer more difficult than those web pages that said that I could make $5000/month from home said it would be. Please stop. We both know you want to buy Cialis, Viagra and refinance your mortgage so just click on the links already. Sheesh.There ya go, fixed your post right up. No need to thank me.
Mod parent down please. (Registered user posting anonymously)
We have a client that we send out over 30,000 emails per month using campaignmonitor.com.
Their list is a double opt-in and still every month we get notified by campaign monitor that there were users in the list who complained of spam. EVERY single one of them were AOL users.
Even though there was an un-subscribe at the bottom of the newsletter they explicitly subscribed to, AOL has a nice little button for them to click if they no longer want to receive those emails. Then AOL automatically submits a spam complaint.
We used the ORBS and spamcop modules on our email server but stopped using them because we would have lots of users complaining that they they wouldn't receive email from clients because they would get trapped. Most were just regular uers whose ISP's had IP's on the list.
I used to be one of those SPAMCOP/ORBS Nazis, taking the "at any cost" attitude to reduce spam, however in the real world, the blacklists are just too inaccurate.
Karma means nothing to me, so suck it...
It's clear you haven't realized that some email marketing companies are hired by people other than sleazeballs, for reasons other than distributing unsolicited ads. I belong to at least a couple of non-profit organizations that don't run their own mail servers. These organizations use third-party mailers to contact me with news and action requests related to certain political issues. And these organizations have enemies.
...
Do you morons ever stop to think about your role in a chain of events like the following?
1) An RIAA lobbyist writes some legislative atrocity and pays off a bunch of US congressmen to introduce it as a bill
2) The EFF catches wind of it, and uses an email marketing campaign targeted at its members who have asked to participate in such campaigns to ask its members to protest the RIAA-authored bill
3) The RIAA lobbyist, who has cleverly subscribed to the EFF's mailing list, reports the email to SpamCop
4)
5) Profit! (For the RIAA)
The same thing happens with AOL, where the users themselves don't have the cerebral capacity to remember which mass-mail lists they've opted into. SpamCop, by not maintaining a whitelist that allows them to ignore spurious or dishonest spam reports, is serving the interests of worse people than spammers.
But I guess you didn't think of that before you flamed the grandparent to a crispy golden brown, huh.
Technology rocks, but people should never over-estimate it.
Always include some alternate means for a legitimate person to easily contact you to resolve the problem. Phone, fax, IM, whatever.
#2. Rate limit the out-bound traffic on those mail servers.
#3. MONITOR your servers. If someone's queue suddenly fills up with 10,000 messages, lock it and investigate it.See above.
Don't focus on trying to get the info out of SpamCop.
Focus on identifying the spammer behaviour on your network BEFORE it gets to SpamCop.Yep. So the idea is to limit the out-going rate by user and to monitor those queues.
The problem is not sending email to a SpamTrap address.
The problem is sending out thousands of spam emails.
The SpamTrap address is just a tool to identify when an address is probably sending out thousands of spam emails.If you don't have the authority to correctly design the network and mail servers, then it is not your problem. It is the problem of whomever does have that authority.
10,000 messages at 4KB is "only" 40MB. You'll see more traffic than that in mp3 shares. So don't focus on the "traffic" on your network.
Again, limit the out-going email rate per account. Then monitor those queues.
If you cannot do that because you aren't allowed to, then it is not your problem.
Otherwise, do it.
Abuse has been automating spam submission to the proper autorities for a few years now. I am sure that, if necessary, it would be possible to add Spamcop to the list of recipients.
Why put myself through this when there is an easier way? I use gmail pretty much exclusively. I just checked my account and there is currently 850 (!) spam emails in my spam folder. There was one spam email in my inbox. Nomrally I never see this at all because what doesn't register as spam with gmail gets caught by Thunderbird. Furthermore, I can set Thunderbird to download copies of my email and leave the originals on the server, so if there is spam in my inbox all I have to do is go to my gmail account in my browser, open the spam email and click the "report spam" button.
I'm not trying to troll Spamcop or anything but why deal with an anti-spam service that complicated enough to need a tutorial on how to report spam when it's much easier to do that with gmail? Plus whatever gets past gmail usually gets caught by Thunderbird's junk mail filter.
I dream of a better world... one in which chickens can cross roads without their motives being questioned.
I was a Spamcop subscriber, using their SMTP forwarding/filtering system. I got fed up with the downtime and the false positives, and canceled the account. A month later, I start getting MASSIVE amounts of spam directed to the "secret" account that is set up for forwarding of "clean" email. Most of these messages had both my true email account and the secret account as recipients.
There's no possible way anyone could have guessed this address (it consisted of random characters), and Spamcop was the only other organization that ever had record of it, and that ever used both of these addresses together.
I don't trust them at all.
I have no text in here I was just saying thanks to the parent for understanding.
That someone who all but admits to being a spammer is mod'ed up 3 times (after posting anon)...
While the follow-ups criticising such are mod'ed down.
Seems like there are a lot of pro-spammer accounts with mod points today.
Anyway, you're still wrong.
#1. The "competitors" you're complaining about would have to have poisoned your "clients" email listing prior to you receiving those listings. That's just unrealistic. Either they'd have to have:
1a. Poisoned almost every company's email listings in which case SpamCop would be dead because every company would be listed on it each time it sent any mailings.
1b. Have someone inside your company telling them who your clients are and then poisoning them BEFORE you get the listing.
#2. Your competitors have lots of accounts that they use to report your sendings to SpamCop. If your competitors have that much expertise and time, then why are they wasting it blacklisting you?
#3. Your competitors already know the SpamCop spamtraps. Why aren't they making a LOT more money as real spammers with this knowledge? Why waste any time/effort on you? They can avoid the spamtraps themselves and get their spam out.
No. None of that makes any sense. You're a spammer and you're mad that SpamCop is being used to kill your spam business.
Double opt-in means when person X signs up with foo@bar.com as the email, the provider sends a "Click here to verify your subscription" link to foo@bar.com
This would make it susceptible to getting on a blacklist from a spamtrap style email account.
Jay | http://oldos.org
No? You didn't realize that? Then maybe you should re-evaluate your supposed expertise on the material.
So what if the EFF's IP address is blocked AFTER the mailing?
Want more? That's easy. Not only would the listing not be in effect until AFTER the mailing, but it would only affect those people who's servers block in-bound email based off of that list.
In other words, the net effect would be NOTHING.
The listing would go into effect AFTER the mailings were already received
AND
The listing would only have affected those users who's email servers blocked based off of that listing PRIOR to accepting based off of a whitelist.You'd be wrong. I deal with this every day.
But I deal with it from the point of view of an email admin who is trying to reduce the in-bound spam while making sure that all the legitimate email is allowed through.
So I have a little bit more experience in this than some spammer who is just bitching that his site keeps getting listed on SpamCop.
In order for you to be correct:
#1. The RIAA would have to get the EFF's servers listed on SpamCop PRIOR to the mailing.
#2. The RIAA would have to get a significant percentage of the mail admins of the mail servers of the users receiving that mailing to use SpamCop.
#3. The RIAA would have to get those mail admins to implement a block based off of that listing.
#4. The RIAA would have to get that block set prior to any user level whitelists.
Yeah, keep believing that all of that can/will happen and that it is the poor "EMail marketing company" that is suffering.
For my part, I'll skip the conspiracy theories and keep blocking the anonymous spammer.
I personaly prefer to use Reactive Autonomous Blackhole List (RABL) in combination with DSPAM.
Setting up RABL is easy as 1-2-3 (with the help of this Gentoo ebuild).
Some other people I trust more then SpamCop have as well installed RABL and we do exchange the data from our blocking list.
SpamCop is all okay but I like to have DNSBL data from sources I know that I can trust them. And I like to have IP's blocked from those dummies sending spam over here in europe. SpamCop has not enought data about those spammers. Only america and asia is well covered, but european spam is still not much found in SpamCop.
Company A -- "EMail marketing company"
Company B -- client of Company A
Company C -- evil competitor of Company B
Somehow, it is claimed, Company C finds out that Company B hired Company A.
Then, Company C sends a subscribe request to Company A with the return address of a SpamCop spamtrap.
THIS IS WHERE THE STORY FAILS
It requires that Company C KNOW that Company B hired Company A.
AND
It requires that Company C KNOW the spamtrap addresses of SpamCop.
AND
It requires that Company A be running a regular double-opt in mailing list.
AND
It requires that Company A (an "EMail marketing company") be unable to check its own email logs to find the recent subscription requests.Yes it would.
IF you accept that EACH of those FOUR requirements is true.
Allow me to remind you of Rule #1:
SPAMMERS LIE!
I don't know about you, but for me, it's easier to believe that the GP is lying about his "business" and SpamCop and everything else
But if you want to believe a spammer when he says that such happens to him
It seems that a lot of moderators also believe the spammer today.
You fail to realize that the messages would already be delivered by the time the RIAA managed to get the server listed on SpamCop, right?
Yeah, obviously, the EFF's marketing company is never going to need to transmit another legitimate mass mailing, so it's OK that the specific one about the RIAA bill didn't get blacklisted in time to stop it.
I am thankful for your insight. (I am also thankful that you work for SpamCop and not Fermilab.)
You can also customize them in Postfix, but the nature of the message means nobody reads them anyway.
Your custom message will appear as a single line below four or five lines of technical jargon appended by the sender's own SMTP program. There is no ability to add formatting or hyperlines, as it's just plain text.
Including the web address for a blacklist lookup (e.g. "Your message was blocked because it came from a server that sent spam, please see http://sorbs.net/lookup?ip=w.x.y.z") has proved completely ineffective.
A human contact name and number is probably a little more likely to be noticed, but the problem still remains that the bounce messages are too hard to read.
Oh come on, "email marketing" is a code word for "spamming" in the biz. OK, maybe, just maybe, your messages are "legit" and maybe you really do take people off your lists when they opt-out, but the reality is that savvy users shouldn't trust opt-outs. Too many spammers use it as a way of verifying good addresses to spam. It is much easier to simply report emails from unwanted "email marketers" as spam.
Email marketing does not always mean SPAM. Email remains a powerful and easy medium of communication. Spammers need to realize it's not difficult to set up a small web site, generate hits, get signups and build a true opt-in newsletter with far higher customer loyalty and conversion rates. They are wasting their time.
I sell an email list management PHP script (LMP) that DOES honour opt-out requests (if you choose to include a "remove link" code). I will agree that even with 100% double-in lists some subscribers find it easier/safer to hit "This is Spam" than risk clicking a remove link.
There is a HUGE market for my program. People need and want to follow up on their web site visitors, prospects, and clients.
1. Sending legitimate, information-packed automated email courses are a great way to get people to come back to your site.
2. You can keep informing your former buyers about your new products - if they like one of your products and the support they receive they are MUCH more likely to buy another one from you.
3. You can send email to all of your site members, etc.
4. Don't have advanced web design skills? You can start your own e-zine/newsletter and make THAT your online business.
My view is you should not click links in anything you did not specifically request online or offline. If you have signed up to a legitimate list or purchased a product from a hard-working individual/company, however, it is counter-productive (and just plain mean) to report their messages as spam. Chances are, they use a popular TRUE opt-out email list management script like mine and your removal request WILL be honoured instantly.
I think all ISPs simply need to incorporate a feedback loop similar to the one AOL offers. By piping email to a CGI script I can detect and 'click' the returned "remove link" to automatically remove complainants. This greatly reduces complaints against future messages.
Spam trap addresses do not seem to be working and are bringing down legitimate lists. A (small) number of my clients have had problems with these addresses being subscribed and even confirmed on their lists. Furthermore, I do (invite-only) web hosting for about 30 users of my program. From time to time a hosted client will import a purchased list containing spam trap addresses. These addresses aren't usually very hard to spot, especially when they are addresses @spamtrap.xxx, etc. I usually get a few hits when I search for email addresses like %spam% across up to 15 hosted clients per server. I do not allow my clients to import purchased or 'obtained' lists, but due to the 'freedom' of my program this isn't always honoured. Of course, those clients are promptly removed and the server's reputation is never harmed (for long).
I use graylisting. My mailserver gives you a temporary error, instead of a permanent one. Your mailserver will keep on trying to deliver the mail. If you got listed on spamcop for any reason other than spam, you *will* get delisted pretty quickly. A listed spammer will not try again to deliver mail. Too much effort. If some idiot with windows and a virus at your ISP does manage to earn a spamcop-listing it will delay your mail anywhere from a couple of hours to two full days, mostly depending on the alertness of your ISP. But the mail will get delivered, eventually.
This simple measure (returning a 4**-errorcode, and not a 5**) got rid of over 2000 spams per hour, without affecting the number of complaints spamfiltering generated. 1 of my 17.000 users noticed once that a specific message had spent 24 hours in a queue somewhere.
since late last year. every spam I submit says too old, or cant find somthing. clearly the spammers now have spamcop busting headers in place. I havent used spamcop for over half a year now.
I am on dialup and as such get a semi random IP number all the time. Several times I have written various "spam blocking" sites and complained when the IP number shows up and I am not allowed to login to some IRC server. It doesn't matter that I run linux and they say my "number" came up as a spam sender because of some named windows trojan. When all you can get is dynamic dialup assigned numbers, what can you do then? The answer is "nothing", BigIsp, Inc is not going to give me a dedicated mumber, that's for sure, so you get nailed by spammers and nailed by the anti spammers, in other words "unfortunate collateral damage" that no one cares about.
I appreciate what the spam blockers are trying to do, but I think that article from the other day had the better idea, the mass automated "opt out" messages direct to the companies using the spam for ads. Take the "stop spamming" message directly where it goes.
Spamcop's benefit and problem are the same- content exposure.
I used to submit all of my Spam to Spamcop as well as a few other blacklists. Of course properly, all the real spam maintaining all of the important information. The issue?
It posted the message for the Spammer to see. It sent it to the ISP. As a part of an ISP, I'm pleased when I get that, as there's nothing worse than "someone submitted something" messages. At the same time, as a user, they put my e-mail addresses in the headers. They include the unsubscribe link. They include unique identifiers in e-mails or base64 encoded addresses placed in the body or headers for tracking purposes.
Why? Someone needs to make a system that hides the message and will, upon request of the Spammer/blocked user, send _you_ the message. You can then modify it. Include only some headers. Strip anything that looks odd. Strip unique IDs. Be an educated user and just submit the important information for them to get back at the user who did it and find the proper script.
-M
when you see the word 'Linux', drink!
Not sure how it goes with the TOS, but I wrote something like this myself a year or so ago. I wrote two scripts in perl:
The first checks a particular IMAP folder for messages and if there is anything there, it bundles them up and sends them off to spamcop as MIME attachments to a single email. (Spamcop can handle *lots* of individual spam items as attachments to a single message to the submission address. I don't know exactly how many, but I've sent upwards of fifty in a single pass, and spamcop has always accepted them, never complained).
The second does a cookie-login at spamcop, checks for any parsed spam waiting to be submitted, and walks through the submission process. My script unchecks the 'third party interested in spam' recipient, 'cos I've never been entirely sure about the motivations of that company).
Both of the scripts are called by cron at appropriate intervals
As for false positives, the only ways that things get into that particular IMAP folder are if they were addressed to one of a handful of known-bad (as in so inundated with spam that they never recieve anything else and I don't use them anymore) or I've personally identified the message as spam, and physically drag/dropped it into that particular folder for processing.
If anyone wans copies of my perl code, drop me an email. I'll clean it up and pass it on. Put [slashdot spamcop] in the email Subject: line.
"Men will never be free until the last king is strangled with the entrails of the last priest." (Diderot)
I made a simpler script in Python that does basically half of the job.
You have to submit the SPAM manually and then pipe the Spamcop reply through it.
Use at your own risk etc. pp.
"Is it friday yet?"
Why not use SpamCops feature to submit the spam mail as an attachment.
It is a feature disabled for every user, unless you ask for permission from SpamCop admins. The reason is, many a too lazy to check whether mail is spam or not and then submit the wrong mails.
There is no submit check in this feature, simply forward the mail, you will get a report telling if the spam was submitted and to which admins reports were send.
The negative part of this feature is that it will only send reports to admins of the networks where mail origin. Spamvertized links will not be reported.
Spamcop is using a rather aggressive strategy to identify possible spam sources. They will count how many spam mails and how many good emails were sent from a certain IP address and calculate a score from that with a strong weight on the spam thus creating many false positives.
My university's mail setup is that all faculty email will pass university's mail servers. Those mailservers a rather frequently listed on the Spamcop blacklist because from the 10000 users there will always be someone who imports an infected laptop or something which will then send spam via the university's mail servers.
Once the university's mail servers are blacklisted everybody from the whole university will run into trouble. Regardless of how many good emails are being sent as well. And let me tell you, nothing is less fun than a professor who will see a project slipping because he cannot submit a proposal to some partner. And no, they don't care about the technical details, which will put the poor system administrator into a really bad position.
Spamcop sucks because it is creating a lot of pressure to fight spam, but sometimes the pressure hits the wrong target!
You can still submit them with this Lotusscript agent:
p am-to-spamcop-from-lotus.html
http://ianconnor.blogspot.com/2006/05/reporting-s
If I could select a mail message in Thunderbird and with right-click submit its source into window on SpamCop form, that would be satisfactory. I (human message selector) would remain in loop and I would handpick what to submit and what to pull out. One thing would be even better: client side message parser that would tell me the message arrival time (so that I can dismiss it myself if it had rotted already) and where it came from (if I wish to file complaint myself, which I actually did before I got overwhelmed and resorted to using SpamCop) - because alerting zombusers is more beneficial - they get bitten, hopefuly get a slap on their wrist, learn their responsibilities about their Internet station (sounds bombastic, but each of connected boxes we own is like a twoway radio station - could be abused to jam others and it is owners responsibility to keep them secured) security.
Yes, you are completely correct. It is spam.
t eral.html
But you will not change his opinion. I believe he is the anonymous "EMail marketing company" from earlier in this thread.
He claims that "This is an industry standard practice..." but that phrase means whatever anyone wants it to mean.
That practice has been vilified for YEARS as "collateral spam". Here is a reference from FIVE YEARS AGO http://www.ja.net/CERT/JANET-CERT/mail/junk/colla
Again, always remember Rule #1.
Spammers lie. He is a spammer. He lies.
One of the reasons I prefer Exim4 is that it is possible to kill all rNDR collateral spam by simply adding an X-header to my out-bound email and checking for such on any in-bound "NDR" messages.
He may be confusing his post with the anonymous post to which I was replying.
Or he may be saying that he was the one who was posting anonymously.I can agree with you on the NDR issue, but I haven't seen anything from Russ that would merit any respect from me. In fact, the opposite is in evidence in this thread. Another link http://slashdot.org/comments.pl?sid=186884&cid=15
:)
Good luck with that. We have clients who's email servers HELO with "exchange_server". We have clients who don't accept email to "postmaster". We have one client who is running GroupWise 6.0 and won't even patch it. A few weeks ago, one of our clients was running an open relay.
The real issue (as I see it) is that people see email as someone else's problem. In every one of those instances above, I've been told by their IT department that there is no problem because they can send and receive email to/from everyone.
Which seems to be the same core issue that Russ Nelson has. As long as it isn't annoying him, it doesn't matter that it may be annoying someone else (look up "joe job"). And claiming it is "industry standard practice" is just more evidence that he does not know what he's talking about.
Particularly when he started this thread with confusion about his server vs his IP address and whether SpamCop had "blocked" him vs other email admins using SpamCop's blacklists.
I'm with you 100% on DNR's. But I believe Russ Nelson has only a superficial understanding of email and is ignorant of the depth of his ignorance.
Case in point: His SpamCop claims. If he was running a double-opt-in list, then his address would only have been flagged for 24 hours when he sent the verification email. And it would only have affected those users who's email admins blocked based off of that.
I don't know many admins that do that. Even SpamCop's FAQ says not to. I'm sure they're out there. But since he should be seeing the rejection notices, why not just send a note with a clip from SpamCop's FAQ to those admins?
So
#1. He's wrong about how his mailing list works
#2. He's complaining about a tiny minority that he isn't doing anything to educate
#3. He really is a spammer
RHSBL's such as http://www.uribl.com/ maintain (and publishes via white.uribl.com) a very large whitelist for domains resulting in much less chance of FP on their black.uribl.com list. spamcop doesnt seem to believe in whitelisting ips/subnets, as hosters such as gmail, aol, sbc, and the like seem to get listed about every other week.
give it a shot, the spam accuracy will hang around 70-80%... which is better than you'll ever get from spamcop.
Sure you were.
No, why don't you explain it?
Let's see, I would say that the spammer was the one of us who was listed by SpamCop.
Oh, you don't like the terms I use? I guess that is too bad for you.
I'm not the one listed by SpamCop, you are.
Yep.
... why is a spammer wasting machine time (that could be used to send spam) subscribing SpamCop spamtrap addresses to your mailing list?
Now, the question is
What's the point?
All that will be accomplished is SpamCop learning which spamtraps have been compromised.
So what if your list is blocked for 24 hours by people who haven't read SpamCop's FAQ? That doesn't get more spam out for the spammer. That doesn't get more spam hits. That doesn't do anything for the spammer. Nor does it hurt SpamCop.
Maybe, but I'm not the one who is making claims he cannot support. Nor am I the one confused about the process of replying in a thread.
Either you were posting anonymously as that spammer
or
You can't tell which post is the GP or GGP to another post.
Those are the facts and I can substantiate them. In this thread.
It seems you have trouble comprehending basic English, too.
Of course SpamCop would like people to use their blacklists. Maybe you also have trouble reading exactly what they post on their site? Here it is: http://www.spamcop.net/fom-serve/cache/291.html
They even tell you not to use it to block email.
I can read that. I can post that. I can understand that.
But you seem to have a problem.
So their FAQ and their repeated instructions in their forums are all part of an elaborate ruse that only you have the intelligence to see through.
Yeah, sure. You're not wrong because even when it is plainly written in black and white and it contradicts you, well, they didn't really mean it. They just wrote that to keep the lawyers away.
They do have a legal defense fund. But I guess you'd find some way of rationalizing that away, too.
You've already claimed that their posted instructions (often repeated in their forums) are false. So why should I care to read what you believe they are doing "wrong" in pursuit of their true agenda?
It all comes down to one simple statement:
Either you are the anonymous spammer
or