On Fri, 2008-04-04 at 07:55 -0400, Matt Kettler wrote:
> Well, I'm less worried about it from a "who gets spam" perspective, but
> more worried by what it implies. These are the only ways for a spammer
> to detect an address that's subscribed to this list, but never used for
> posting anywhere:
^^^^^^^
Probably doesn't apply to the OP, since the address seems to be used
exclusively for mailing lists -- however, your list of address
harvesting sources lacks a possibility:
> 0) That address really has been used for posting, possibly by a former
> owner of your domain.
> 1) Dictionary attack (ie: guessing, which they do a lot of, and if you
> don't have countermeasures, they guess quite rapidly)
> 2) malware on the PC you used to subscribe, or any of your local servers
> used to handle the subscription request.
Malware on the machine of anyone, who ever received a (personal) mail
from that address, sent a mail to it or otherwise added it to some local
address book.
(Since bots spread themself by harvesting address books on infected
machines, spammers would be dumb if they don't use these addresses as
targets, too.)
> 3) hacking the list servers and mining the address (ie: malware on the
> list server)
> 4) malware on the routers of one of the ISPs involved is sniffing the lines.
guenther
--
char *t="[EMAIL PROTECTED]";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
