Date: Wed, 15 Jan 2014 14:57:07 +0800 From: Erich Dollansky <erichsfreebsdlist@alogt.com> To: Polytropon <freebsd@edvax.de> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: Combining pkg and "traditional ports" --> spam Message-ID: <20140115145707.6b1da740@X220.alogt.com> In-Reply-To: <20140115072738.553ff65d.freebsd@edvax.de> References: <20140115063634.d6d26d51.freebsd@edvax.de> <20140115142325.4f7c20e6@X220.alogt.com> <20140115072738.553ff65d.freebsd@edvax.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On Wed, 15 Jan 2014 07:27:38 +0100 Polytropon <freebsd@edvax.de> wrote: > On Wed, 15 Jan 2014 14:23:25 +0800, Erich Dollansky wrote: > > > > I just noticed a new method spammers are using. I have answered to > > this e-mail and get then from outside the mailing list spam to the > > account I use at the mailing list. > > Same here, right after I posted the question in Subject. > > > > > Of course, this means that some people are harvesting now addresses > > in real-time and send out spam. As nobody knows the address of the > > harvester, not much can be done. > > The spam comes from a "Hotmail" account, but that doesn't > say anything (except it's a typical throwaway "valid" address). > The originator is probably a dedicated or hijacked system > at paradoxumstore.com.br, considering the message headers... > Do you have similar data? > > it must be something taken over: Return-path: <SRS0=p4NZ=WV=hotmail.com=casey4nsa@srs.kundenserver.de> Envelope-to: erichsfreebsdlist@alogt.com Delivery-date: Tue, 14 Jan 2014 23:34:29 -0700 Received: from moutng.kundenserver.de ([212.227.17.10]:62958) by sl-508-2.slc.westdc.net with esmtps (TLSv1:RC4-SHA:128) (Exim 4.82) (envelope-from <SRS0=p4NZ=WV=hotmail.com=casey4nsa@srs.kundenserver.de>) id 1W3K3X-00070n-Of for erichsfreebsdlist@alogt.com; Tue, 14 Jan 2014 23:34:28 -0700 Received: from CLOUD-8642 (mail02.paradoxumstore.com.br [198.20.177.135]) by mrelayeu.kundenserver.de (node=mrbap2) with ESMTP (Nemesis) id 0MCfv0-1WBXFa100g-009qHm; Wed, 15 Jan 2014 07:34:26 +0100 kundenserver.de is or was 1 & 1. I do not think that it is an open SMTP server. I like the name casey4nsa. Erich
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140115145707.6b1da740>