From owner-freebsd-questions@FreeBSD.ORG Thu Aug 23 21:10:42 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EEC9616A41A for ; Thu, 23 Aug 2007 21:10:42 +0000 (UTC) (envelope-from peter@bsdly.net) Received: from skapet.datadok.no (cl-426.sto-01.se.sixxs.net [IPv6:2001:16d8:ff00:1a9::2]) by mx1.freebsd.org (Postfix) with ESMTP id 9C34F13C465 for ; Thu, 23 Aug 2007 21:10:42 +0000 (UTC) (envelope-from peter@bsdly.net) Received: from thingy.bsdly.net ([10.168.103.11] helo=thingy.datadok.no.bsdly.net ident=peter) by skapet.datadok.no with esmtp (Exim 4.62) (envelope-from ) id 1IOJwv-0002Fx-I6; Thu, 23 Aug 2007 23:10:41 +0200 To: Gary Kline References: <87r6lumboh.fsf@thingy.datadok.no> <20070823195015.GA45853@thought.org> From: peter@bsdly.net (Peter N. M. Hansteen) Date: Thu, 23 Aug 2007 23:10:38 +0200 In-Reply-To: <20070823195015.GA45853@thought.org> (Gary Kline's message of "Thu, 23 Aug 2007 12:50:15 -0700") Message-ID: <87mywilzxt.fsf@thingy.datadok.no> User-Agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.19 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: freebsd-questions@freebsd.org Subject: Re: spammers harvesting emaill address from this list X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Aug 2007 21:10:43 -0000 Gary Kline writes: > If your user login is "smith", you could have all mailing > list mail sent to "smitty" and keep an open mutt or other reader > a click away. Spam could be easily flagged ... . Yes, there are several things you could filter on. However the traplist activities are really about identifying spam sending hosts. If a machine we have not exchanged mail with in recent times tries to deliver mail to something bizarre like <3c86y7xj60op.fsf@amidala.datadok.no> (which looks like it was actually based on a GNUS message-ID), the message is either spam or in some very rare cases a bounce message triggered by an attempt to deliver spam. > I'm bcc'ing this to my account with evolution to check out your > blog info. I've run into problems with spamd and other suites. I would be interested in hearing what the problems were. It's worth noting that spamd from OpenBSD 4.1 onwards differs in several important ways from earlier versions. And also, it's important not to confuse this spamd with the program with the same name out of spamassassin. Cheers, -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.datadok.no/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.