Goddamn those corporations. How dare they create the kind of wealth that would let the average income be $36,000 a year, in a country where you have to actively refuse any help to starve.
I should also add that every time Slashdot puts up a new spam-munge that leaves the domain name intact, as with the current one, I start getting bounces in my logs from spammers:
Feb 16 08:25:22 oa sendmail[4090]: g1GDPKD04090: <sLAPLACEyberghost@eiv.com>... User unknown
Feb 16 08:25:22 oa sendmail[4090]: g1GDPKD04090: from=<mark@gemdealers.net>, size=0, class=0, nrcpts=0, proto=SMTP, daemon=MTA, relay=netturbo.cscoms.com [202.183.214.2]
I thought you guys were gonna fix those to always munge the domain, too, for those poor souls who get their domain's mail via fetchmail with a POP account?
I bounce 100% of that, excepting the ones that have invalid headers proclaiming them to be text.
But only for me, not my users.
Here are the procmail rules I use:
:0
* ^X-Header-Type:.HTML
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
:0
* ^Content-Type:.text/html*
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
:0
* ^CONTENT-TYPE:.text/html*
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
and yes, I realize there's a better way to write them. I'm lazy.:-) I also spam-proofed an address in there, so remove "NOSPAM" when you edit this for your own use.
I used to have the rules include:
* !^FROM_DAEMON
* !^FROM_MAILER
but the spammers have figured out how to make their emails look like they meet these conditions, and spam was getting through. No legitimate MTA will be sending HTML-only error messages.
I do still see a percentage of it, when it bounces back as undeliverable due to the fake return addresses. But I can spot that without getting too far into it.
I run the risk of confirming my address, but anybody sending me legitimate HTML mail gets a proper chance to repent.
Between them, I'm stopping an average of over 100 messages a day. We do not have a single indication of any false positives yet.
Considering that only 2 of my 7 users receive a lot of mail per day (based on the size of their mail spools), that's a hell of a lot of spam.
So protestations that "they don't work" are bunk. If you think spam blacklists don't work, then you either have a skewed definition of "work", or you're just sadly misinformed.
As for "false positives", that depends on your definition. I personally choose not to do business with people who keep open relays. I therefore by definition can only have a "false positive" if there's a bug in one of my blacklists. Legitimate mail from an open relay isn't a false positive as far as I'm concerned, and my users have hundreds of alternatives if they don't like my policies.
I've had my fill of 10 year olds trash talking in CS and Quake. Who needs some skeezoid playing a wookie to start following you around, picking you up and shaking you for change every chance he gets?
Especially since his name will undoubtedly be DarthMaul873.
Sun, HP, and RedHat all listed links to the patches before patches were ready.
In fact, as of this morning, only RedHat had coughed up a patch yet. But Sun and HP still recommend you install the nonexistent patch right away.
Also, hmm, Microsoft doesn't use Open Source code, but their product is curiously affected by this vulnerability that mostly afflicts UNIX-based implementations...
A lot of people think EBCDIC is one of those "IBM tries to adopt something incompatible to lock people in" moves. The 1890 cards were encoded essentially in EBCDIC, it predates ASCII by a long damn time.
It was the 1890 census. And standard VGA text is 80 columns today in large part because of the ~1930 upgrade of Hollerith's cards to 80 columns, and hasn't changed in any meaningful way since the 1950s.
BTW, for those who don't know, the company Hollerith formed to service the 1890 census changed it's name in 1924 to IBM.
You have a majority here that when you take an activist stand, like say voting for Nader, tell you you wasted your vote even when said critic admits to not voting at all.
I'll say you wasted your vote, and I not only voted, but I voted for a third-party candidate.
While the open source community worries about building a free telephone, Microsoft is setting itself up to own the phone network.
Is it better that there be a new phone network, and Open Source folks not be able to use it without using Windows?
Re:... It's Microsoft's Software, Microsoft's Serv
on
AOL vs. Trillian
·
· Score: 2
So why should they Allow Netscape Browsers to run on their OS? Why should they allow AOL to be installed on their OS?
Because people are paying for their product with the expectation of being able to do that, and because it's illegal to use a monopoly in one area to secure a monopoly in another.
Why should ISP's provide the bandwidth that AOL uses with there "proprietary application"?
Because people are paying for that bandwidth with the expectation of being able to do that, and would stop paying for it if no longer able to do that.
Exactly how much did you pay AOL for access to their network, again?
They may have a nice web site, but they have a history of not confirming email addresses.
Many a time have I had to go in and change somebody's password to "asshole" and their email address to "postmaster@llbean.com" so I'd stop getting their misdirected email from their unconfirmed signup with a typoed domain. It's another one of the reasons I changed my mailer configuration back to bouncing misdirected mail.
If the market truly opens up, Apple may face the really tough choice of dumping their hardware line entirely. When the time comes, will they make the right choice and make the shift to software-only gracefully?
If they don't then I fear that one of the last strongholds against Microsoft market share may wither and die.
You're missing something crucial here; for them to do that, the market would have to open up, and thus by definition there'd be a TON of "last bastions" making enough money to scare Apple.
But it won't open up the same way the PC market did; the time was right for computers on the desktops, IBM just got lucky to hit it at the exact right moment with enough money to fill the bill. There aren't that many people sitting around going "gee, I'd buy a computer, if somebody other than Apple made Macs." People who don't like Apple just don't buy Macs.
Slashdot Mirror
Goddamn those corporations. How dare they create the kind of wealth that would let the average income be $36,000 a year, in a country where you have to actively refuse any help to starve.
Wow, what a great story this was, when I submitted it three weeks ago...
I should also add that every time Slashdot puts up a new spam-munge that leaves the domain name intact, as with the current one, I start getting bounces in my logs from spammers:
Feb 16 08:25:22 oa sendmail[4090]: g1GDPKD04090: <sLAPLACEyberghost@eiv.com>... User unknown
Feb 16 08:25:22 oa sendmail[4090]: g1GDPKD04090: from=<mark@gemdealers.net>, size=0, class=0, nrcpts=0, proto=SMTP, daemon=MTA, relay=netturbo.cscoms.com [202.183.214.2]
I thought you guys were gonna fix those to always munge the domain, too, for those poor souls who get their domain's mail via fetchmail with a POP account?
HTML mail with no text portion (3.33)
:-) I also spam-proofed an address in there, so remove "NOSPAM" when you edit this for your own use.
I bounce 100% of that, excepting the ones that have invalid headers proclaiming them to be text.
But only for me, not my users.
Here are the procmail rules I use:
:0
* ^X-Header-Type:.HTML
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
:0
* ^Content-Type:.text/html*
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
:0
* ^CONTENT-TYPE:.text/html*
* !^X-Loop: MAILER-DAEMON@eivNOSPAM.com
| (formail -rk -i "From: MAILER-DAEMON@eivNOSPAM.com" -A "X-Loop: MAILER-DAEMON@eivNOSPAM.com"; echo "eiv.com does not accept html-only emails."; echo "Either include a text attachment, or remove us from your lists."; echo "This is an automated response, no human has seen or will see your message." ) | $SENDMAIL -t -oi
and yes, I realize there's a better way to write them. I'm lazy.
I used to have the rules include:
* !^FROM_DAEMON
* !^FROM_MAILER
but the spammers have figured out how to make their emails look like they meet these conditions, and spam was getting through. No legitimate MTA will be sending HTML-only error messages.
I do still see a percentage of it, when it bounces back as undeliverable due to the fake return addresses. But I can spot that without getting too far into it.
I run the risk of confirming my address, but anybody sending me legitimate HTML mail gets a proper chance to repent.
I have only about 7 users. I am using two blacklists:
Not Just Another Black List, and Osirus
Between them, I'm stopping an average of over 100 messages a day. We do not have a single indication of any false positives yet.
Considering that only 2 of my 7 users receive a lot of mail per day (based on the size of their mail spools), that's a hell of a lot of spam.
So protestations that "they don't work" are bunk. If you think spam blacklists don't work, then you either have a skewed definition of "work", or you're just sadly misinformed.
As for "false positives", that depends on your definition. I personally choose not to do business with people who keep open relays. I therefore by definition can only have a "false positive" if there's a bug in one of my blacklists. Legitimate mail from an open relay isn't a false positive as far as I'm concerned, and my users have hundreds of alternatives if they don't like my policies.
Besides which, what equates Open Source with all flavors of Unix?
UCSD's Free reference code, that's what. The same thing Microsoft used.
If it's a better link, how come you didn't post my story that was nearly identical, but linked to the better link instead?
It's funny that this story immediately follows the one where Bruce Schneier says it best:
"Publication does not ensure security, but it's an unavoidable step in the process."
Depends on how soon he was allowed to divest his VA stock.
/. story as I am that he left comments turned on. That took balls, man. :-)
The good news is, he did it on time. The bad news is, he spent it all on Enron stock.
I'm not as impressed that he asked her in a
I've had my fill of 10 year olds trash talking in CS and Quake. Who needs some skeezoid playing a wookie to start following you around, picking you up and shaking you for change every chance he gets?
Especially since his name will undoubtedly be DarthMaul873.
5: Make the game about the Episode IV-VI period, not the Episode I-III period...
Two funny bits about this:
Sun, HP, and RedHat all listed links to the patches before patches were ready.
In fact, as of this morning, only RedHat had coughed up a patch yet. But Sun and HP still recommend you install the nonexistent patch right away.
Also, hmm, Microsoft doesn't use Open Source code, but their product is curiously affected by this vulnerability that mostly afflicts UNIX-based implementations...
Oh, yeah, one more thing:
:-)
A lot of people think EBCDIC is one of those "IBM tries to adopt something incompatible to lock people in" moves. The 1890 cards were encoded essentially in EBCDIC, it predates ASCII by a long damn time.
Which doesn't mean it doesn't suck.
It was the 1890 census. And standard VGA text is 80 columns today in large part because of the ~1930 upgrade of Hollerith's cards to 80 columns, and hasn't changed in any meaningful way since the 1950s.
BTW, for those who don't know, the company Hollerith formed to service the 1890 census changed it's name in 1924 to IBM.
It plays hell with your uptime. We all know that's more important to /. users than security, right?
Bonus points to anybody who does this and then submits an nmap fingerprint of it...
You have a majority here that when you take an activist stand, like say voting for Nader, tell you you wasted your vote even when said critic admits to not voting at all.
I'll say you wasted your vote, and I not only voted, but I voted for a third-party candidate.
Next is we just stick the motherboard on top of the desk, and start hooking cables to it.
He may or may not recieve DIRECT monetary incentives to keep up the good work, but regardless, the line is crossed.
How quickly they forget...
Are intelligent machines transforming life as we know it?
Wouldn't we need to have some, first, before we could say they "are" doing anything?
While the open source community worries about building a free telephone, Microsoft is setting itself up to own the phone network.
Is it better that there be a new phone network, and Open Source folks not be able to use it without using Windows?
So why should they Allow Netscape Browsers to run on their OS? Why should they allow AOL to be installed on their OS?
Because people are paying for their product with the expectation of being able to do that, and because it's illegal to use a monopoly in one area to secure a monopoly in another.
Why should ISP's provide the bandwidth that AOL uses with there "proprietary application"?
Because people are paying for that bandwidth with the expectation of being able to do that, and would stop paying for it if no longer able to do that.
Exactly how much did you pay AOL for access to their network, again?
Funny, Bush didn't mention the increased funding for the War on Stupidity last night...
So in reality, if Norrath was a country, the GNP would not be as high as his estimate.
So it'd be Argentina...
They may have a nice web site, but they have a history of not confirming email addresses.
Many a time have I had to go in and change somebody's password to "asshole" and their email address to "postmaster@llbean.com" so I'd stop getting their misdirected email from their unconfirmed signup with a typoed domain. It's another one of the reasons I changed my mailer configuration back to bouncing misdirected mail.
If the market truly opens up, Apple may face the really tough choice of dumping their hardware line entirely. When the time comes, will they make the right choice and make the shift to software-only gracefully?
If they don't then I fear that one of the last strongholds against Microsoft market share may wither and die.
You're missing something crucial here; for them to do that, the market would have to open up, and thus by definition there'd be a TON of "last bastions" making enough money to scare Apple.
But it won't open up the same way the PC market did; the time was right for computers on the desktops, IBM just got lucky to hit it at the exact right moment with enough money to fill the bill. There aren't that many people sitting around going "gee, I'd buy a computer, if somebody other than Apple made Macs." People who don't like Apple just don't buy Macs.