[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Recent fun on Debian-Security



I was thinking of possible solutions to avoid our recent fun on debian-security
with mail bombings...

plhofmei@Genesis:~$ cat /var/log/exim/mainlog.0 | grep debian-security | grep \<\= | wc -l
     80 <-----mail list subscribe-bomb....
plhofmei@Genesis:~$ cat /var/log/exim/mainlog | grep debian-security | grep \<\= | wc -l
      4
plhofmei@Genesis:~$ cat /var/log/exim/mainlog | grep debian-devel | grep \<\= | wc -l
     29
plhofmei@Genesis:~$ cat /var/log/exim/mainlog.0 | grep debian-devel | grep \<\= | wc -l
     40


See above...

One thought that occured to me is to recruit volunteers for spam-prone lists
that would have real-time blacklists capabilities.  Someone could log into a
system and say "Add this address to the list's blacklist".  This could be
accomplished via sudo (to run the script as a user /w privlidges to the
blacklist) and a well written perl script.  If the consensus is hat this would
be a good and implementable idea then I can write the perl script.  I would
also volunteer to monitor the lists I am on...

Regards,
-- 
Phil

PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/ | gpg --import

Attachment: pgpuxcM1Agoxv.pgp
Description: PGP signature


Reply to: