From owner-freebsd-questions@FreeBSD.ORG Sun Apr 12 06:58:37 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D710DE6 for ; Sun, 12 Apr 2015 06:58:37 +0000 (UTC) Received: from alogt.com (alogt.com [69.36.191.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id B0608402 for ; Sun, 12 Apr 2015 06:58:37 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=alogt.com; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:References:In-Reply-To:Message-ID:Subject:Cc:To:From:Date; bh=KZa24XowPRdzohNAxRDIXiTrkGj+JwDhxt2F34yB0rU=; b=c/Ls3hB4WHCzrel4TDmxr6C+Hz0wyQ9UK2aAEbub2UvOWqp4APMmknoOi4x39h79WCXaVBPOZdVuTfp0sezz1K+YJ/pwU1zagsESuEnVu/EN4ahdeDN5QeMNQkL1dtAMB74fule5+EXC5njLImMkvPZ+OYuuNDGqaH79wHms9Cw=; Received: from [114.121.160.150] (port=62707 helo=B85M-HD3-0.alogt.com) by sl-508-2.slc.westdc.net with esmtpsa (TLSv1.2:AES128-GCM-SHA256:128) (Exim 4.85) (envelope-from ) id 1YhBqg-001vZG-BY; Sun, 12 Apr 2015 00:58:31 -0600 Date: Sun, 12 Apr 2015 14:58:18 +0800 From: Erich Dollansky To: Ernie Luzar Subject: Re: email address being harvested from ports website Message-ID: <20150412145818.741737ad@B85M-HD3-0.alogt.com> In-Reply-To: <55291B68.4060509@gmail.com> References: <5527D0BD.8060401@gmail.com> <20150411084630.7727dbd2@B85M-HD3-0.alogt.com> <55291B68.4060509@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - sl-508-2.slc.westdc.net X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - alogt.com X-Get-Message-Sender-Via: sl-508-2.slc.westdc.net: authenticated_id: erichsfreebsdlist@alogt.com X-Source: X-Source-Args: X-Source-Dir: Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Apr 2015 06:58:38 -0000 Hi, On Sat, 11 Apr 2015 09:02:32 -0400 Ernie Luzar wrote: > Erich Dollansky wrote: > > On Fri, 10 Apr 2015 09:31:41 -0400 > > Ernie Luzar wrote: > > > >> I maintain 4 ports and within the last 6 months I have started > >> receiving large amounts of spam on the ports maintainer email > > > > this is an old subject. Some harvester got registered here and > > collect the address of every e-mail posted to this list. They > > started a long time ago by directly answering every e-mail sent out > > by the list and went now to typical spamming. > > > > There is no real way against this. Registration makes it more > > difficult but not impossible. > > > > But they are very easy to filter. > > > >> The http://www.freebsd.org/ports/ website is being harvested for > >> email addresses. > >> > > It is not the web-site, it is the lists from where they get the > > e-mail addresses. > > > >> We all have personally experienced spam email. Now the volunteers > >> who create and maintain the ports in the Freebsd ports collection > >> are being targeted with spam. > >> > > They are very easy to filter. So, why bother. > > > > As the O.P. the maintainer email addresses are not used for every day > use. There are special email addresses created just for the > individual port. After updating the ports with new email addresses > that have never had email traffic using them I still got spam within > a few days of the the port update. > isn't the mail address then in the port's makefile? The filtering of spam becomes a problem then. > This has nothing to do with the email address I use for this list. > > The http://www.freebsd.org/ports/ website is being harvested for > email addresses. > > The maintainer email should not be shown to the public. > And the e-mail address in the Makefile? I think, somebody who can write a script to get the e-mail addresses out of the website like this should not have a real problem to get them out of the ports. Of course, the e-mail address should be hardly needed on the web site. Everybody who has to contact the maintainer also has access to the makefile. Erich