goodness
knows what that proves, except perhaps to bounce back to someone else as
spam.
goto www.sorbs.net - they are the business...
-Original Message-
From: Scott Harris [mailto:[EMAIL PROTECTED]
Sent: Saturday, December 20, 2003 12:49 AM
To: 'Scott Williams'; Spamassassin-
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Scott Williams
> Sent: Thursday, December 18, 2003 11:10 PM
> To: Scott Williams
> Cc: Spamassassin-List
> Subject: [SAtalk] Spammer causing Denial Of Service
>
> I was looking at the SA logs and
Thanks
-Original Message-
From: Jennifer Wheeler [mailto:[EMAIL PROTECTED]
Sent: Wednesday, December 03, 2003 7:40 PM
To: [EMAIL PROTECTED]; 'Spamassassin-Talk'
Cc: Idan Lerer
Subject: RE: [SAtalk] Spammer with dot in the mail from header
HI there
> -Original Messag
On Wed, 3 Dec 2003, Jennifer Wheeler wrote:
> > Idan Lerer said:
> > > I would like to block spammer that sends me emails with mail from
> > > [EMAIL PROTECTED]
> >
> > > header LOCAL_SAPM_FROM_WALLA ALL =~ /\abcd.\w{0,[EMAIL PROTECTED]/i
> >
> > Idan,
> >
> > quote the dot "\.":
> > heade
HI there
> -Original Message-
> From: [EMAIL PROTECTED]
[mailto:spamassassin-
> [EMAIL PROTECTED] On Behalf Of Chris Thielen
> Sent: Wednesday, December 03, 2003 12:26 PM
> To: Spamassassin-Talk
> Cc: Idan Lerer
> Subject: Re: [SAtalk] Spammer with dot in the mail
Idan Lerer said:
> I would like to block spammer that sends me emails with mail from
> [EMAIL PROTECTED]
> header LOCAL_SAPM_FROM_WALLA ALL =~ /\abcd.\w{0,[EMAIL PROTECTED]/i
Idan,
quote the dot "\.":
header LOCAL_SAPM_FROM_WALLA ALL =~ /abcd\.\w{0,[EMAIL PROTECTED]/i
--
Chris Thielen
Easi
On Wed, Aug 27, 2003 at 04:59:42PM +0200, Morten Kjeldgaard wrote:
> What can be done to plug this hole?
I think that the goal here is to not add invisible
words to the bayesian database.
Step one is to detect which words are invisible.
You could simply look for white words, but the next
thing y
On Wed, 27 Aug 2003 16:59:42 +0200 (CEST)
Morten Kjeldgaard <[EMAIL PROTECTED]> wrote:
> I've noticed recently that spam is starting to creep through the cracks of
> SA. I looked at one of them, and it seems this spammer is trying to foil
> the spam-filters, especially Bayes.
>
> The spam mess
On Wed, 27 Aug 2003, Morten Kjeldgaard wrote:
> eutectic scarf tailing identifiable corresponded
Whenever I've seen this, it's looke like:
eutectic scarf tailing identifiable corresponded
ie -- opening a font over and over. I wrote a simple procmail rule to catch
that:
:0 B
* <1
* ^^$?$?
On Monday 18 November 2002 03:09 am, Matt Sergeant wrote:
> Matthew Cline said the following on 16/11/02 03:14:
> > Anyone know some forums or mailing lists where spammers discuss
> > their trade? I'd like to take a look at some of them, just out of
> > curiosity.
>
> There's Clickz.com, but I thi
On Monday 18 November 2002 07:36 am, Justin Mason wrote:
> I couldn't read the article though, as I didn't have a login to get
> by their auth system. Most of them are password-protected it seems.
> These things all seem to go on in hidden or password-protected fora
> -- for obvious reasons.
He
Matt Sergeant said:
> Matthew Cline said the following on 16/11/02 03:14:
> > Anyone know some forums or mailing lists where spammers discuss their
> > trade? I'd like to take a look at some of them, just out of curiosity.
>
> There's Clickz.com, but I think they're mostly legit (opt-in) marke
Legit, opt-in marketers?
Wow...there must be what...2 or 3 actual members on that list?
On Mon, 18 Nov 2002, Matt Sergeant wrote:
> Matthew Cline said the following on 16/11/02 03:14:
> > Anyone know some forums or mailing lists where spammers discuss their
> > trade? I'd like to take a look a
Matthew Cline said the following on 16/11/02 03:14:
Anyone know some forums or mailing lists where spammers discuss their
trade? I'd like to take a look at some of them, just out of curiosity.
There's Clickz.com, but I think they're mostly legit (opt-in) marketers
there now talking about how t
At Mon Oct 14 20:41:54 2002, Jeremy Oddo wrote:
>
> What WinNT list(s) were talking about this? I'd like to get a little
> more info. I was hit by it and I *KNOW* that the NetBIOS ports were
> (and still are) closed tight. I'm really interested in how they (the
> spammers) did what they did...
ny
answers.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]] On
> Behalf Of Mike Leone
> Sent: Friday, October 11, 2002 4:19 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [SAtalk] Spammer
>
>
> * McClung, Darren W. ([EMAIL PROTECTED]) wrote this o
* McClung, Darren W. ([EMAIL PROTECTED]) wrote this on 10 11, 02 at 09:34:
> This is OT, but pretty important. If these messenger spams are getting
> through, your NetBIOS ports are open to the outside, which is VERY BAD.
Saw the same reports on the WinNT list, and one of the people there
defini
At Fri Oct 11 14:14:00 2002, McClung, Darren W. wrote:
>
> This is OT, but pretty important. If these messenger spams are getting
> through, your NetBIOS ports are open to the outside, which is VERY BAD.
>
> You need to filter tcp/udp ports 137:139.
This is not adequate. The university I work
tions on that and configure the firewall to allow port 3389 through
to that server.
-Original Message-
From: Rose, Bobby [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 11, 2002 9:23 AM
To: [EMAIL PROTECTED]
Subject: RE: [SAtalk] Spammer
Yeh I know try convincing a bunch of academic fa
: RE: [SAtalk] Spammer
This is OT, but pretty important. If these messenger spams are getting
through, your NetBIOS ports are open to the outside, which is VERY BAD.
You need to filter tcp/udp ports 137:139.
Darren
-Original Message-
From: Rose, Bobby [mailto:[EMAIL PROTECTED]]
Sent
This is OT, but pretty important. If these messenger spams are getting
through, your NetBIOS ports are open to the outside, which is VERY BAD.
You need to filter tcp/udp ports 137:139.
Darren
-Original Message-
From: Rose, Bobby [mailto:brose@;med.wayne.edu]
Sent: Thursday, October 10,
On Thu, 10 Oct 2002 19:05:42 -0400, you wrote:
>Someone at 207.44.141.140 is sending out spam via the Windows messaging
>service. Is it time for SA for Firewalls. ;-)
No, it's just (*way* past) time to stop using Windows Messaging Service. :-)
--
22 matches
Mail list logo