Re: fighting spam || avoiding spam
On Mon, Jun 07, 2004 at 08:04:23PM +0200, Josip Rodin wrote:
> Actually, unfortunately there is there is. My mail servers regularly reject
> viruses that master.debian.org relays to me, and then it generates a bounce
> and this goes through to me. In the last few weeks I got around 107 such
> mails, 6.9 MB. If I had to directly pay for my bandwidth, I would have
> a strong urge to become violent.
> A very ironic example is the message below that I recently received.
To clarify, this isn't a typical example, most of them are automatically
generated and without comments, but I singled out this particular one
because I thought it was ironic. Also,
> > SMTP error from remote mailer after end of data:
> > host my.server [zzz.zz.zzz.zz]: 550 Message contains malware (Worm.Lovgate.X)
> > ------ This is a copy of the message, including all the headers. ------
> > ------ The body of the message is 175585 characters long; only the first
> > ------ 102400 or so are included here.
There's another bit of info that I missed, only a piece of that junk got
to me in the second instance. And one more thing:
> > Return-path: <firstname.lastname@example.org>
> > Received: from gluck.debian.org [18.104.22.168]
> > by master.debian.org with esmtp (Exim 3.35 1 (Debian))
> > id 1BVDUM-0004Jd-00; Tue, 01 Jun 2004 12:55:50 -0500
> > Received: from (xxxxxx.xxx.xx) [yyy.yy.yy.yyy]
> > by gluck.debian.org with esmtp (Exim 3.35 1 (Debian))
> > id 1BVDTJ-0005Tm-00; Tue, 01 Jun 2004 11:54:46 -0600
> > Message-Id: <E1BVDTJ-0005Tmemail@example.com>
Here the virus/spam used the second MX, likely intentionally, and indeed
that server actually filled in the missing Message-ID.
So the end effect here is that not one but two Debian machines, plus my
machine to an extent, wasted time on this junk.
2. That which causes joy or happiness.