Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
graz
Chief SQLTeam Crack Dealer
4149 Posts |
 Posted - 2006-01-16 : 15:56:47
|
| We recently had an individual sign up for the forums and start sending spam to other members. The spam indicates he's from Cote d'Ivoire and it's a variation on the Nigerian scam. We've locked his account. If you recieve any further emails after this message please let me know using the Contact Us link at the top of the page. We're also doing a little research into his IP addres to see what steps we can take there.Thank you for you cooperation and patience.-Bill===============================================Creating tomorrow's legacy systems today.One crisis at a time. |
|
|
Kristen
Test
22859 Posts |
Posted - 2006-01-17 : 02:54:18
|
Anyone with "Out of office" or "Reply receipt" enabled will have disclosed a real email address, I would guess?Swines  We just had someone spoof a sales@MyDomain.com (i.e. for one of our domains) as a reply-address and I got over 7,000 bounces, "Out of office", "Read receipt" and "STOP SPAMMING ME YOU ******" messages from Admins etc!!Of course our existing SpamAssasin based filter missed all these, because they were legit.So it looks like we've got to move to a "You haven't emailed us before, follow this link and click on the web page etc. etc. etc. to validate that you are a human"(Thoughts on solutions folk use would be appreciated, thanks)Kristen |
 |
|
|
Frank Kalis
Constraint Violating Yak Guru
413 Posts |
Posted - 2006-01-17 : 03:35:42
|
| Looks like that guy came over here after he had spread his disease at SQL-Server-Performance.com. Unfortunately the only reliable way we figured out was to to modify one's profile and temporarily disallow other members to send you mail via the forum. --Frank KalisMicrosoft SQL Server MVPhttp://www.insidesql.deHeute schon gebloggt? http://www.insidesql.de/blogs |
|
|
|
Frank Kalis
Constraint Violating Yak Guru
413 Posts |
Posted - 2006-01-17 : 03:39:17
|
quote:
Thoughts on solutions folk use would be appreciated, thanks
One other method would be that in the Snitz forum, the forum admin must approve a member before he can post. Well...--Frank KalisMicrosoft SQL Server MVPhttp://www.insidesql.deHeute schon gebloggt? http://www.insidesql.de/blogs |
|
|
|
graz
Chief SQLTeam Crack Dealer
4149 Posts |
Posted - 2006-01-17 : 11:31:52
|
quote:
Originally posted by Kristen
So it looks like we've got to move to a "You haven't emailed us before, follow this link and click on the web page etc. etc. etc. to validate that you are a human
The problem is that this is a person. It's not automated. This person is individually sending these emails.===============================================Creating tomorrow's legacy systems today.One crisis at a time. |
|
|
|
Kristen
Test
22859 Posts |
Posted - 2006-01-18 : 01:22:57
|
| Sorry Graz, I realised that but digressed to "What's the best way for folk like us to filter out spam" - given that I found a way in which SpamAssasin was bypassed (and that would be the case for people who got hit by this technique who had ReplyReceipt or OutOfOffice turned on and thus "identified" their EMail address back to the spammer.Kristen |
|
|
|
|
|
|
|
|
Spam from a forum user