SPAMMERS are fast !!!
Len
I accidentally posted 6 posts hitting 6 news groups yesterday with
a REAL email address in the 'From' field all before 4pm. By 8pm I
had already received 2 SPAMS!!!! Man, they work fast!!!
--
Len
Please reply to newsgroup so everyone may benefit.
Anti-spam notice: Send any email to: q...@iname.com
Chris Pollard
In article <33393B...@bottom.com>, Len <email....@bottom.com>
writes
>I accidentally posted 6 posts hitting 6 news groups yesterday with
>a REAL email address in the 'From' field all before 4pm. By 8pm I
>had already received 2 SPAMS!!!! Man, they work fast!!!
Report the F***ers to thier postmaster, isp etc.
I've managed to get 3or4 accounts closed in the last few weeks doing
this and boy does it feel good to get yer own back.
--
later
Chris Pollard
Moi
> >I accidentally posted 6 posts hitting 6 news groups yesterday with
> >a REAL email address in the 'From' field all before 4pm. By 8pm I
> >had already received 2 SPAMS!!!! Man, they work fast!!!
> Report the F***ers to thier postmaster, isp etc.
>
> I've managed to get 3or4 accounts closed in the last few weeks doing
> this and boy does it feel good to get yer own back.
> Chris Pollard
Oh yeah?? What about when the spammers ARE the service providers. I got
a spam just this evening from a provider (Huskynet.com) touting their
internet service. Should I report them to them??
Donal Lyons
In article <01bc3d86$2ef74400$3185...@muldrew.nbnet.nb.ca>, "Moi"
<!!!!dr...@nbnet.nb.ca> wrote:
> Oh yeah?? What about when the spammers ARE the service providers. I got
> a spam just this evening from a provider (Huskynet.com) touting their
> internet service. Should I report them to them??
Try n...@cais.com
--
Donal Lyons, Phone (1000-1700 GMT) +353 1 608 1919
Department of Statistics, Phone Messages +353 1 608 1767
Trinity College, Dublin 2, FAX on request
Ireland.
Jeffrey Bloss
On 31 Mar 1997 03:46:20 GMT, "Moi" <!!!!dr...@nbnet.nb.ca> wrote:
>Oh yeah?? What about when the spammers ARE the service providers. I got
>a spam just this evening from a provider (Huskynet.com) touting their
>internet service. Should I report them to them??
Absolutely! Service providers have... well... service providers. :)
For instance, the service I post from, toolcity.net, is fed by
SprintNet I believe. And on the other side, ToolCity provides services
to several domains like meadville.com, metromead.com, etc...
Jay
Jeffrey Bloss wrote
"Moi" wrote:
>
> > What about when the spammers ARE the service providers. I got
> >a spam just this evening from a provider (Huskynet.com) touting their
> >internet service. Should I report them to them??
> Absolutely! Service providers have... well... service providers. :)
> For instance, the service I post from, toolcity.net, is fed by
> SprintNet I believe. And on the other side, ToolCity provides services
> to several domains like meadville.com, metromead.com, etc...
Anyone know how I can tell the route on Eudora? I just get the first and
last points on the headers when I check the full headers.
Phaedrus
In article <01bc3f7d$264a59c0$7285...@muldrew.nbnet.nb.ca>,
You generally can't tell from an email message. What you need is a
program called "traceroute"; it's installed on many Un*x boxes, and versions
are available for Mac and Windows. Basically, you feed traceroute a hostname,
and it tells you the machines that communications to that host go through.
For example, let's say that I was getting junk email from cybermall.com.
(Note that this is a purely hypothetical example; I've never gotten any mail
from cybermall.com, as far as I know--I just picked the name out of the air,
and it turned out that it actually exists. :-) ) I run
"traceroute cybermall.com", and get the following:
traceroute to cybermall.com (205.217.51.28), 30 hops max, 40 byte packets
1 bellevue-e2.wa.com (198.137.231.254) 4 ms 4 ms 4 ms
2 border7-serial4-4.Seattle.mci.net (204.70.206.109) 35 ms 12 ms 12 ms
3 core2-fddi-0.Seattle.mci.net (204.70.203.49) 20 ms 8 ms 8 ms
4 * core1.SanFrancisco.mci.net (204.70.4.169) 223 ms *
5 border3-fddi-0.SanFrancisco.mci.net (204.70.2.163) 195 ms 31 ms 47 ms
6 innovation-group.SanFrancisco.mci.net (204.70.34.34) 23 ms 31 ms 35 ms
7 * cybermall.com (205.217.51.28) 39 ms 47 ms
This looks like gibberish, but it's showing the series of machines that
communications from my site to cybermall.com are going through right now.
In general, the machine you're interested in is the one listed on the next-to-
last line, the line above the machine you're tracing; that's line 6 in this
example. That machine is the target machine's "feed", the machine that its
communications are going through. In this case, it's an mci.net machine.
So if I were having these purely-hypothetical problems with cybermall.com, and
couldn't get satisfaction through them, mci.net would be the logical next
step to complain to.
--
\o\ If you're interested in books/stories with transformation themes, \o\
/o/ try <URL:http://www.halcyon.com/phaedrus/translist/translist.html>. /o/
\o\ New list entries always appreciated. FC1.21:FC(W/C)p6arw A- C->++ D>++ \o\
/o/ H+ M>+ P R T++++ W** Z+ Sm RLCT a cmn++++$ d e++ f+++ h- i++wf p-- sm# /o/
Theral Mackey
In article <5hul6i$q2s$1...@halcyon.com>, Phaedrus <phae...@halcyon.com> wrote:
>In article <01bc3f7d$264a59c0$7285...@muldrew.nbnet.nb.ca>,
>Jay <J...@unb.net> wrote:
>>Jeffrey Bloss wrote
>>last points on the headers when I check the full headers.
>
> You generally can't tell from an email message. What you need is a
>program called "traceroute"; it's installed on many Un*x boxes, and versions
>are available for Mac and Windows.
Actually, the message should list the name of every host that it passes
through in order. As the message goes from host to host, the new host's
name is added to the list. Most graphic mail readers usually hide the
headers, and even when show full headers is on.
If the spam came from your ISP, or another ISP using the same main ISP as
your ISP, then there might be only one step for the mail to be transfered.
For reference, the trumpet winsock version of traceroute for windoze is
called Hop Check. It works almost exactly as the unix equivilant, with a
gui.
T-mack
____________
/|____ ____| gt3...@prism.gatech.edu Uhhh, These are like
|/__ /| |___/ tm...@prism.gatech.edu some e-mail addresses
| | | tm...@tmack.gt.ed.net I use.
| | |-Mack http://www.prism.gatech.edu/~gt3777b These are
| |__| http://www.prism.gatech.edu/~tm92 some web pages
|/__/ http://tmack.gt.ed.net I have made. =)
Chris Pollard
In article <5hv3d7$7...@smash.gatech.edu>, Theral Mackey
<tm...@tmack.gt.ed.net> writes
>In article <5hul6i$q2s$1...@halcyon.com>, Phaedrus <phae...@halcyon.com> wrote:
>>In article <01bc3f7d$264a59c0$7285...@muldrew.nbnet.nb.ca>,
>>Jay <J...@unb.net> wrote:
>>>Jeffrey Bloss wrote
>>>Anyone know how I can tell the route on Eudora? I just get the first and
>>>last points on the headers when I check the full headers.
>>
>> You generally can't tell from an email message. What you need is a
>>program called "traceroute"; it's installed on many Un*x boxes, and versions
>>are available for Mac and Windows.
>
they are just as keen to get rid of spam as you are.
Henry Payne
How do you change your address to keep spammers from using it?
Henry
Morgoth Bauglir
Get accounts at HotMail, GeoCities, USA.net, BigFoot, Juno, or POBox.
That way you can dump an account when the spmammers get ahold of it.
If the question is how to set the return address in MSI News, I don't
use that; but you can look at my headers to see how it's done in
Netscape or Agent. Put in something that's obvious to a human, but not
to a 'bot.
M
Henry Payne wrote:
>
> How do you change your address to keep spammers from using it?
> Henry
--
In the Land of the Blind the one-eyed man is king...
until they find out he can see. Then they kill him.
helen
Henry Payne wrote:
>
> How do you change your address to keep spammers from using it?
> Henry
Henry,
If you are using Netscape do the following: Go to your emailbox.
Click on options. Click on Mail and News preferences.
Click on identity. Change your email address. Remember that when you
post something and you want to have people respond you must let them
know what your real email address is. Put it in your sig. Example: if
you change your email address to hen...@efn.org you should say
something like remove X to email me.
It thwarts many a spammers but if they already have your email address
talk to your ISP and see what you can do to change your email address
permenantly.
Aloha,
helen
--
DO NOT SEND UNSOLICITED COMMERCIAL EMAIL TO ME!!!! If you do send me
UCE, I
will send it to the proper
authorities.
FYI:
"By US Code Title 47, Sec. 227 (a)(2)(B), a computer modem/printer meets
the definition of a
telephone fax machine. By Sec. 227 (b)(1)(C), it is unlawful to send
any unsolicited
advertisements to such equipment. By Sec. 227 (B)(3)(C), a violation of
the aforementioned is
punishable by action to recover actual monetary loss, or $500 whichever
is greater, for each
violation.
John Jordan
helen <kil...@whidbey.net> dijo a todos por la red:
> If you are using Netscape do the following: Go to your emailbox.
>Click on options. Click on Mail and News preferences.
>Click on identity. Change your email address. Remember that when you
>post something and you want to have people respond you must let them
>know what your real email address is. Put it in your sig. Example: if
>you change your email address to hen...@efn.org you should say
>something like remove X to email me.
>
> It thwarts many a spammers but if they already have your email address
>talk to your ISP and see what you can do to change your email address
>permenantly.
I read an article the other day that the spammers had made their
robotic software sufficiently sophisticated that it now looks for an
"x" in the address and deletes it. The article mentioned a couple of
other popular tricks that they are now able to get around. <sigh>
Check out my sig line. I've been with this ISP for a couple of weeks,
and have sent out several dozen newsgroup messages. So far, not one
spam e-mail.
NOTICE: I just changed ISP's, but I left my old e-mail address in the
message header to foil robotic mailing list generation software. If
you really need to email me, my new service provider is "SpiritOne."
If you are human, you should be able to correct the address.
Rich Greenberg
In article <334876...@whidbey.net>, helen <kil...@whidbey.net> wrote:
>Henry Payne wrote:
>>
>> How do you change your address to keep spammers from using it?
>> Henry
>
>Henry,
>Click on options. Click on Mail and News preferences.
>Click on identity. Change your email address. Remember that when you
>post something and you want to have people respond you must let them
>know what your real email address is. Put it in your sig. Example: if
>you change your email address to hen...@efn.org you should say
>something like remove X to email me.
While this will work, a better idea is to change something on the right
side of the "@". On the left side, the spam will still get to your ISP
and then bounce as unknown user (unless there happens to be a henrypx
there in addition to you. This keeps it out of your mailbox but causes
overhead at your ISP.
If you make the site address invalid, all this overhead occurs at the
ISP of the spammer, where it belongs. For example, make it:
hen...@efn.nospam.org
--
Rich Greenberg
N6LRT TinselTown, CA, USA Play: ric...@netcom.com 310-649-0238
Pacific time. I speak for myself & my dogs only. VM'er since CP-67
Canines: Val(Chinook,CGC), Red(Husky,(RIP)), Shasta(Husky) Owner:Chinook-L
John Oliver
>Well if you get spam from isp's just complain to your own isp i'm sure
>they are just as keen to get rid of spam as you are.
Good luck... so far, AOL is the only ISP I can think of that's stood
up to a spam domain, and that was a while back... they probably caved
and let cyberpromo back in.
*****************************************************
Please email responses.
My "reply-to" address has been altered
to foil bulk-emailers. To reply to this
message, remove the asterisk from the
end of my email address.
"If I thought you needed an opinion, I'd give you one!"
John Oliver
On 2 Apr 1997 14:05:06 -0800, phae...@halcyon.com (Phaedrus) wrote:
> You generally can't tell from an email message. What you need is a
>program called "traceroute"; it's installed on many Un*x boxes, and versions
>are available for Mac and Windows. Basically, you feed traceroute a hostname,
>and it tells you the machines that communications to that host go through.
> For example, let's say that I was getting junk email from cybermall.com.
>(Note that this is a purely hypothetical example; I've never gotten any mail
>from cybermall.com, as far as I know--I just picked the name out of the air,
>and it turned out that it actually exists. :-) ) I run
>"traceroute cybermall.com", and get the following:
>
>traceroute to cybermall.com (205.217.51.28), 30 hops max, 40 byte packets
> 1 bellevue-e2.wa.com (198.137.231.254) 4 ms 4 ms 4 ms
> 2 border7-serial4-4.Seattle.mci.net (204.70.206.109) 35 ms 12 ms 12 ms
> 3 core2-fddi-0.Seattle.mci.net (204.70.203.49) 20 ms 8 ms 8 ms
> 4 * core1.SanFrancisco.mci.net (204.70.4.169) 223 ms *
> 5 border3-fddi-0.SanFrancisco.mci.net (204.70.2.163) 195 ms 31 ms 47 ms
> 6 innovation-group.SanFrancisco.mci.net (204.70.34.34) 23 ms 31 ms 35 ms
> 7 * cybermall.com (205.217.51.28) 39 ms 47 ms
But where are you left when one of the hops on the traceroute leads
you to a dead end (timed out, timed out, timed out...)? I'm getting
soam from "noreply.com", and I *can't* tracerout them...
Rich Greenberg
In article <334f3764...@news.zippo.com>,
John Oliver <jol...@pacbell.net*> wrote:
>But where are you left when one of the hops on the traceroute leads
>you to a dead end (timed out, timed out, timed out...)? I'm getting
>soam from "noreply.com", and I *can't* tracerout them...
Just because a domain name shows in a From: line doesn't mean that it
exists. Another handy unix utility (probably also available for PCs) is
"whois" which looks up a domain in the internic data base.
A Whois for "noreply.com" says "no such domain".
In such a case, you have to look at the rest of the header lines, but
they can also be forged.
Mendel Leo Cooper
Rich Greenberg wrote:
>
> In article <334f3764...@news.zippo.com>,
> John Oliver <jol...@pacbell.net*> wrote:
>
> >But where are you left when one of the hops on the traceroute leads
> >you to a dead end (timed out, timed out, timed out...)? I'm getting
> >soam from "noreply.com", and I *can't* tracerout them...
>
> Just because a domain name shows in a From: line doesn't mean that it
> exists. Another handy unix utility (probably also available for PCs) is
> "whois" which looks up a domain in the internic data base.
Another couple of useful utilities to trace back spam to its source are
"dig" and "nslookup". These are generally available on UNIX (Linux)
systems (I don't know of any equivalents for DOS/Wimp).
In the "from:" line of the spam message, find the "dotted quad", i.e., a
number like 209.156.135.29, for example. Then do a "dig -x
209.156.135.29" or an "nslookup" of same. This will usually trace the
spam back to the correct domain. Even forging the headers will not
(usually) be able to evade this.
Good luck.
--
"The society which scorns excellence in plumbing as a humble activity
and tolerates shoddiness in philosophy because it is an exalted activity
will have neither good plumbing nor good philosophy ... neither its
pipes nor its theories will hold water."
===============================================
+ http://personal.riverusers.com/~thegrendel/ +
===============================================
DUNE
Was going to trim but only three groups. For MS-IE go to news -
options.-server. Then add something similar to the one below. You may use
about anything.
Morgoth Bauglir <melkor@DELETE_THIS.usa.net> wrote in article
<3347FB03.3493@DELETE_THIS.usa.net>...
> Get accounts at HotMail, GeoCities, USA.net, BigFoot, Juno, or POBox.
> That way you can dump an account when the spmammers get ahold of it.
>
> If the question is how to set the return address in MSI News, I don't
> use that; but you can look at my headers to see how it's done in
> Netscape or Agent. Put in something that's obvious to a human, but not
> to a 'bot.
>
> M
>
> Henry Payne wrote:
> >
> > How do you change your address to keep spammers from using it?
> > Henry
>
biz...@mail.net
"Henry Payne " <hen...@efn.org> wrote:
>How do you change your address to keep spammers from using it?
>Henry
Like this:
"Henry Payne" <henryp...@efn.org>
To Reply Remove NOSPAM From Email Address
James Gerber
"Henry Payne " <hen...@efn.org> wrote:
>How do you change your address to keep spammers from using it?
Just go to the mail program configuration and change your name and mail
address to something bogus.
--
James Gerber "...some will rob you with a six-gun, and some
jwge...@erols.com with a fountain pen" --Woodie Gutherie
http://www.erols.com/jwgerber/
Lic. Antonio Pecora
Hi there. I would like everyone to take a few seconds to check out my
homepage and tell me what they think... I love positive critism.
Take care
--
Antonio F. Pecora Musolino http://homepages.mty.itesm.mx/~al764929/
Coordinator, Public Relations
ITESM Virtual University
Monterrey Institute of Technology
http://www.ruv.itesm.mx/
Mike Zaccheo
In article <5iguee$is8$1...@kiyoko.communique.net>, biz...@mail.net writes
>"Henry Payne " <hen...@efn.org> wrote:
>
>>How do you change your address to keep spammers from using it?
--
Zak AKA
Mike Zaccheo - Email mi...@zactec.demon.co.uk
Chris Pollard
In article <RA+o2MAu...@zactec.demon.co.uk>, Mike Zaccheo
<mi...@zactec.demon.co.uk> writes
>In article <5iguee$is8$1...@kiyoko.communique.net>, biz...@mail.net writes
>>"Henry Payne " <hen...@efn.org> wrote:
>>
>>>How do you change your address to keep spammers from using it?
>>>Henry
>>
>>Like this:
>>
>> "Henry Payne" <henryp...@efn.org>
>>To Reply Remove NOSPAM From Email Address
>Would it not be better to change the bit AFTER the @ ?
You should always change the bit after the @ I think, that way it keeps
the rubbish from ever getting to your ISP therefore saving them
bandwidth and giving you a better service.... Oh and It'll bounce back
to the spammer quicker too, maybe, probably.....
You could have a look at :
If you want some more ideas or are just interested.
(By the way the sites got nothing to do with me!)
Keith Lynch
In article <334b9f19...@news.spiritone.com>,
John Jordan <j...@nstar.com> wrote:
> I read an article the other day that the spammers had made their
> robotic software sufficiently sophisticated that it now looks for an
> "x" in the address and deletes it.
These must be the spammers that never spam DIGEX customers.
Might I suggest that they also remove the letters E, T, A, O, I, and N
from all addresses. That should cut down on the complaints those poor
spammers have to put up with.
--
Keith Lynch, k...@clark.net
http://www.clark.net/pub/kfl/
I boycott all spammers.
john
k...@clark.net (Keith Lynch) wrote:
If the spammer gives you a name and address send a few magazine
subscriptions to the spammer.
Just think--if only a THOUSAND receipients of the spam did this!!
Chris Pollard
In article <5is23k$4...@sjx-ixn10.ix.netcom.com>, john
<joh...@ix.netcom.com> writes
brochures a few years ago (A sack full of 'em)
>Just think--if only a THOUSAND receipients of the spam did this!!
>
--
Ben Coffer
In article <5iguee$is8$1...@kiyoko.communique.net>, biz...@mail.net says...
> "Henry Payne " <hen...@efn.org> wrote:
>
> >How do you change your address to keep spammers from using it?
> >Henry
>
> Like this:
>
> "Henry Payne" <henryp...@efn.org>
> To Reply Remove NOSPAM From Email Address
>
>
Killjoy
john wrote:
>
> k...@clark.net (Keith Lynch) wrote:
>
> >In article <334b9f19...@news.spiritone.com>,
> >John Jordan <j...@nstar.com> wrote:
> >> I read an article the other day that the spammers had made their
> >> robotic software sufficiently sophisticated that it now looks for an
> >> "x" in the address and deletes it.
>
> >These must be the spammers that never spam DIGEX customers.
>
> >Might I suggest that they also remove the letters E, T, A, O, I, and N
> >from all addresses. That should cut down on the complaints those poor
> >spammers have to put up with.
> >--
> >Keith Lynch, k...@clark.net
> >http://www.clark.net/pub/kfl/
> >I boycott all spammers.
>
> If the spammer gives you a name and address send a few magazine
> subscriptions to the spammer.
>
YEAH! Magazine publishers would lose millions! Some would go out of
business!
You've got to consider unintended negative consequences, man.
--
Best regards,
Michael.
--
ALL UNSOLICITED COMMERCIAL EMAIL IS UNWELCOME. To send email, edit the
address shown. I am not a webmaster, remove that part as well. That
part is there because spam harvesters are programmed to ignore addresses
containing "webmaster". No email containing HTML, please.
Chris Pollard
In article <MPG.dbda4b2e...@200.1.1.78>, Ben Coffer
<b...@failsafe.co.uk.x> writes
I use turnpike too and as far as I'm aware you can't, you have to use a
seperate news program (Netscape will do it)