Hi Javier, On Sat, Oct 21, 2006 at 12:05:58AM +0200, Javier Fernández-Sanguino Peña wrote: > > I'm not sure if anybody else is seeing this but I have seen (just today) 28 > spam messages sent to the BTS. I've received them because they were all sent I've seen BTS spam before and ask the list admins about it. > to (at least) the 'www.debian.org' pseudo-package, and I have reported all of > them in the BTS' spam interface [1] > > They also seem to share common carachteristics: > > a) Subject fits the regexp: ".* note|letter|message\. You .* read\." > b) The MTA it claims to be: "X-Mailer: Microsoft Office Outlook, Build 11.0.*" I've seen this X-Mailer Header used with recent spam. Is this a 'real' used mailer, if not, it maybe an easy regex to stop this spam. > c) The first two lines of the body fit these regexps: > > The great .* are .*\. > The increase is up to 70%.* > > I'm pretty sure this spam has probably found a place in many other BTS > entries, I was just wondering if the BTS admins have noticed and placed > appropiate measures in place (I'm sure they have, but just in case). > #101772, #102186, #101772, #101870, #180196, #180118 Does BTS mail have identifiable header and/or body characteristics to determine what is legitimate? Does all mail to the bts come from: debian.org mailers, reportbugs or some identifable sources that would make legitimate email identifable? cheers, Kev -- | .''`. == Debian GNU/Linux == | my web site: | | : :' : The Universal | debian.home.pipeline.com | | `. `' Operating System | go to counter.li.org and | | `- http://www.debian.org/ | be counted! #238656 | | my keysever: pgp.mit.edu | my NPO: cfsg.org |
Attachment:
signature.asc
Description: Digital signature