On 11/25/2014 11:21 AM, Reindl Harald wrote:
Am 25.11.2014 um 18:53 schrieb Ted Mittelstaedt:
I see people like you every day who are CONVINCED they can deal with
greyness in the world by a machine. Poor fools that they are, they are
the ones who construct elaborate voice auto responder "voice trees"
(press 1 for this press 2 for that) as if every single problem someone
could call in about falls into some neat hole.
YO HAVE NO REASONABLE EXCUSE for condemning someone who runs honeypots
using addresses that you don't like when they TAKE THE TIME TO PICK UP
THE DANM PHONE when you call them
piss in some other direction
i am known as a hardliner if it comes to filters but with the intention
to accept 100% legit mail and not throw away some percent to gain 100%
junk catched
i just explained that taking a previous existing valid address as
honeypot-source is stuip and why that is the case and frankly don't
bother what you do - only if you block or mailserver because some
customer did not cleanup / refresh his addressbook you will hear from me
with a clear statement as well as your possible customer waiting for
mails you block as result of "i build spamtraps with previous vaild
addresses", that's plain stupid with no but and if
I have no control over what you tell YOUR customer. Undoubtedly once
you get ahold of me and I tell you that your customer is being blocked
BECAUSE HE IS EMAILING ADDRESSES ON MY SERVER THAT HAVE BEEN BOUNCING
MAILS FOR THE LAST DECADE you will realize that it's YOUR customers
fault and you will help him to DELETE those stale addresses from his
address book - then you will manufacture some pie-in-the-sky reason
about how it's my fault that he was dumb enough to IGNORE BOUNCES FOR
TEN YEARS.
If that helps you sleep at night, so be it. But I
think it's ridiculous and I think most people would think that also.
You might consider that once an email address is purged from my server
that NOBODY in the world, including your customer, has ANY moral right
to send more than ONE email to it. They get ONE bounce mail to tell
them to purge their address book. But anything more than that, and what
is going on is THEIR laziness and ignorance is NOW starting to cost me
money, it is costing me server resources and bandwidth for them to open
a connection to me.
In short, once they got a notification that the address is nonexistent,
they are now STEALING from me when they continue to email that address
on my server.
if you want to dirve honeypots create own RCPT's, domans/dubdomains and
spread that targets hidden into websites - that's the way to go without
risk collateral damage - feel free to ignore it but be prepared for
complaints
Do you even understand what a honeypot is? Seriously?
A honeypot is USELESS if it appears AT ALL DIFFERENT.
MY honeypots are addresses THAT ARE INDISTINGUISHABLE from all other
LEGITIMATE addresses on my mailserver. That's why they work.
Dumb spammers might be snookered by a bogus subdomain that is only for
honeypots.
Dumb spammers might be snookered by an email address that only shows up
on a webpage.
But the smarter spammers are likely going to ignore email addresses
obtained from targets hidden in websites, and they are likely to figure
out fake domains.
The only thing that really can fool the smarter spammer is an email
address that is a REAL email address. That is, an email address that
WAS IN USE for a period of time.
When I review my logs and I see "unknown user" bounces for email
addresses on my server that were cancelled a decade ago, in my view,
anything sent to those addresses IS SPAM and it is going into the Bays
learner.
After all it's not like I NEVER cycle through honeypot addresses. As I
said, it's an old domain. My list of cancelled addresses goes back much
longer than a decade. I have lots and lots of old email addresses that
were cancelled well over a decade ago, and I only use a fraction of
those at any time for my current honeypots. I change them out from time
to time.
Ted
