On 05/08/2015 22:41, Steve Fairhead wrote:
FWIW I nowadays record the last IP so that I can see patterns, and at
the very least identify spammers which otherwise I would have missed.
Finally, this has paid off. After a couple of years of collecting stats,
I've identified some patterns, which I
On 05/08/2015 16:40, Seth wrote:
(PS: went after one of the main spammers - nice house in New Jersey.
We have a rep in the USA... non-violent suggestions for retribution?
JalapeƱo bean dip under the car door handle always works.
There's a thing: I'm currently growing two kinds of chilli: Ja
> Yep, already running greylisting. (I did say I was running spamd.)
>
> Thanks,
Are you using the valid rcpt to check in greyscanner, when tied with
disposable addresses, it is very effective atleast with informed users.
I have a perl script or two that reads my smtpd configuration files and
wor
On Thu, 30 Jul 2015 15:07:24 -0700, Steve Fairhead
wrote:
Meanwhile, my database of sinners really should be "out there" to ...
But where? I update it several times a day...
You could start your own block list I suppose, but methinks you'd be
reinventing the wheel to some extent.
(PS: we
On 30/07/2015 23:07, Steve Fairhead wrote:
Oooh, nice. Some meat there for me to look into. Thanks.
Well, it seems I could have phrased that better... (one private response
had me nonplussed until I googled the phrase - refers to a male with a
larger than average... errr... never mind.)
Th
li...@wrant.com [li...@wrant.com] wrote:
> > The spammers that he's talking about already handle greylisting, and
> > they have SPF records, so you need to involve some kind of collaborative
> > reporting system to block them quickly before they change colors again.
>
> closed or open community?
> The spammers that he's talking about already handle greylisting, and
> they have SPF records, so you need to involve some kind of collaborative
> reporting system to block them quickly before they change colors again.
closed or open community?
On 30/07/2015 16:09, Seth wrote:
Steve, I had the some problem, lots of spammers were figuring out how to
'climb over the greywall', so I added spamd-bpgd [1] and a few
blacklists [2] into the mix.
I haven't figure out how to incorporate DNSBL into spamd, so I use the
cruder method of downloadin
On 07/30/2015 11:14 AM, Seth wrote:
On Thu, 30 Jul 2015 08:09:38 -0700, Seth wrote:
Sorry, forgot the link to greyscanner post
[3] http://www.mail-archive.com/misc@openbsd.org/msg116961.html
DNSBL is very powerful:
post:gwes:4612$ grep -c listed /var/log/maillog
501
post:gwes:grep -c -n sen
On Wed, 29 Jul 2015 15:12:17 -0700, Steve Fairhead
wrote>
But when it does, I'd like to hurt them. I also run spamd; can't seem to
find a way to tarpit based on domain rather than IP...
Any cluebats?
Steve, I had the some problem, lots of spammers were figuring out how to
'climb over the
On Thu, 30 Jul 2015 08:09:38 -0700, Seth wrote:
Sorry, forgot the link to greyscanner post
[3] http://www.mail-archive.com/misc@openbsd.org/msg116961.html
Hi Steve,
On 2015-07-29 Wed 23:12 PM |, Steve Fairhead wrote:
>
> Am now seeing a recent (last few months) HEEEUUGE increase in spam to my
> (redirected mail) users with the following pattern:
>
> - spam sent to many email addresses with one-time-only domain, each of
> which has a barely tracea
On 30/07/2015 03:15, Quartz wrote:
Not sure if it will help your specific situation, but you could look
into server side "grey listing". This will cause your mail server to
temporarily reject mail from them, forcing them to try again a couple
hours later. Fly-by-night spam places almost never bot
Quartz [qua...@sneakertech.com] wrote:
> >Any cluebats?
>
> Not sure if it will help your specific situation, but you could look into
> server side "grey listing". This will cause your mail server to temporarily
> reject mail from them, forcing them to try again a couple hours later.
> Fly-by-nigh
Any cluebats?
Not sure if it will help your specific situation, but you could look
into server side "grey listing". This will cause your mail server to
temporarily reject mail from them, forcing them to try again a couple
hours later. Fly-by-night spam places almost never bother to resubmit,
Hi folks,
Am now seeing a recent (last few months) HEEEUUGE increase in spam to my
(redirected mail) users with the following pattern:
- spam sent to many email addresses with one-time-only domain, each of
which has a barely traceable and mobile (and maybe temporary) IP, but
with a whois re
16 matches
Mail list logo
