Re: spamcop
[This message has also been posted to linux.debian.user.]
In article <70hHI-4qF-1@gated-at.bofh.it>, s. keeling wrote:
> Mumia W.. <paduille.4058.mumia.w@earthlink.net>:
>> On 09/28/2006 12:23 PM, Andrew Sackville-West wrote:
>> > [...]
>> > also, threadjacking, but its spam related... is anyone else getting a
>> > lot of these "bounced email" spam? I'm getting a TON of it lately. It
>> > all has a .zip or .com binary attachment, so obviously its a virus or
>>
>> I've gotten a couple of such messages with the virus removed.
>
> Follow it up. Complain to the bouncer that their SMTP is
> misconfigured and they're sending bounce messages to innocent third
> parties whose From: addresses were forged by spammers.
My experience has been that anyone clueless enough in 2006
to run a broken server (Barracuda appliance, Qmail...), that
sends backscatter to random addresses supplied by spammers
and malware, is too clueless to understand a complaint
about it. If you can even get a complaint through.
Look their domain up in whois -h whois.abuse.net.
postmaster (default, no info) every time. Send mail to
postmaster@domain and abuse@domain. User unknown, or
sorry, your spam report triggered our spam filter.
Not just clueless, clue resistant. Clue repellent.
Report them to RFC-Ignorant.org when that happens.
Then add them to your local DNSBL if you can get away with it.
Or your firewall.
Cameron
Reply to: